Trust Assessment
page-cro received a trust score of 73/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 1 finding: 1 critical, 0 high, 0 medium, and 0 low severity. Key findings include Untrusted skill content attempts to define LLM persona and instructions.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 20, 2026 (commit e36d6fd3). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Untrusted skill content attempts to define LLM persona and instructions The entire skill definition, provided as untrusted input, contains explicit instructions for the host LLM, including defining its role, goals, and operational constraints. This constitutes a direct attempt to inject instructions into the LLM's prompt, manipulating its behavior and persona. Review and sanitize skill definitions to ensure they do not contain malicious or unintended instructions when sourced from untrusted origins. Ensure the skill execution environment strictly separates trusted system prompts from untrusted skill content. | LLM | SKILL.md:1 |
Scan History
Embed Code
[](https://skillshield.io/report/16cc185d8a734c5d)
Powered by SkillShield