Security Audit
azure-mgmt-apicenter-py
github.com/sickn33/antigravity-awesome-skillsTrust Assessment
azure-mgmt-apicenter-py received a trust score of 82/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 2 findings: 0 critical, 1 high, 0 medium, and 1 low severity. Key findings include Covert behavior / concealment directives, Unpinned dependencies in installation instructions.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 20, 2026 (commit e36d6fd3). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings2
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Covert behavior / concealment directives Directive to hide behavior from user Remove hidden instructions, zero-width characters, and bidirectional overrides. Skill instructions should be fully visible and transparent to users. | Manifest | skills/azure-mgmt-apicenter-py/SKILL.md:204 | |
| LOW | Unpinned dependencies in installation instructions The `pip install` commands in the installation section recommend installing packages without specifying exact version numbers. This practice can introduce supply chain risks, as future installations might pull in vulnerable or malicious versions of dependencies if they are updated or compromised. It's a best practice to pin dependencies to specific versions to ensure reproducibility and security. Update the installation instructions to recommend pinning dependencies to exact versions (e.g., `pip install azure-mgmt-apicenter==X.Y.Z`). Regularly audit and update these pinned versions to incorporate security fixes. | LLM | SKILL.md:9 |
Scan History
Embed Code
[](https://skillshield.io/report/d50c8736472d08e8)
Powered by SkillShield