Security Audit
python-patterns
github.com/sickn33/antigravity-awesome-skillsTrust Assessment
python-patterns received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 0 high, 1 medium, and 0 low severity. Key findings include Excessive Permissions Declared.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 20, 2026 (commit e36d6fd3). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| MEDIUM | Excessive Permissions Declared The skill's manifest declares 'Write', 'Edit', 'Glob', and 'Grep' permissions. Based on the skill's description ('Python development principles and decision-making. Teaches thinking, not copying.') and its content (a markdown document providing guidance), these permissions appear to be excessive. A purely informational skill should generally only require 'Read' access, if any. 'Write' and 'Edit' allow modification of files, while 'Glob' and 'Grep' enable broad file system enumeration and content searching, posing a risk for data exfiltration or unauthorized modifications if the skill were compromised or misused. Review and reduce the declared 'allowed-tools' in the skill's manifest to only those strictly necessary for its intended functionality. For an informational skill, 'Read' might be sufficient, or no specific file system permissions might be needed at all. | LLM | SKILL.md:1 |
Scan History
Embed Code
[](https://skillshield.io/report/2648f76871bb5412)
Powered by SkillShield