Trust Assessment
fp-ts-react received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Mismatched skill source repository.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 20, 2026 (commit e36d6fd3). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Mismatched skill source repository The `source` URL declared in the skill's manifest (`https://github.com/whatiskadudoing/fp-ts-skills`) does not match the repository URL where this skill package is hosted (`https://github.com/sickn33/antigravity-awesome-skills`). This discrepancy introduces a supply chain risk as the origin and integrity of the code cannot be easily verified. It could indicate an unauthorized copy, a modified fork, or a misconfigured manifest. Verify the true origin and intent of the skill. If it's a legitimate fork, update the `source` field in the manifest to reflect the current repository or add a clear explanation. If it's an unauthorized copy, consider removing or flagging the skill. | LLM | SKILL.md:1 |
Scan History
Embed Code
[](https://skillshield.io/report/6fed2a6483f744d4)
Powered by SkillShield