Trust Assessment
csharp-pro received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 0 high, 1 medium, and 0 low severity. Key findings include Skill instructs LLM to open local file.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 20, 2026 (commit e36d6fd3). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| MEDIUM | Skill instructs LLM to open local file The skill instructs the host LLM to 'open `resources/implementation-playbook.md`'. This implies the LLM has file system access capabilities. While the path is relative and likely within the skill's own directory, granting file read access to the LLM could lead to data exfiltration if the file contains sensitive information or if the LLM is later prompted to reveal its contents. It also represents a potential vector for prompt injection if the content of `implementation-playbook.md` is untrusted or contains malicious instructions. Ensure that the LLM's file access capabilities are strictly sandboxed to only necessary files and directories. If `implementation-playbook.md` contains sensitive data, consider if it truly needs to be accessible by the LLM. If the file is meant to provide further instructions, ensure its content is thoroughly vetted for prompt injection attempts. Consider using a dedicated tool call for reading files with explicit content filtering rather than a general 'open' instruction. | LLM | SKILL.md:18 |
Scan History
Embed Code
[](https://skillshield.io/report/e9442eea8fab05c7)
Powered by SkillShield