Trust Assessment
tdd-workflow received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Skill declares broad and dangerous permissions.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 20, 2026 (commit e36d6fd3). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Skill declares broad and dangerous permissions The skill's manifest explicitly declares 'Bash' permission, which allows arbitrary command execution on the host system. Additionally, 'Read', 'Write', 'Edit', 'Glob', and 'Grep' provide extensive filesystem access. While the current skill content (SKILL.md) does not directly exploit these, the declared capabilities pose a significant security risk. A malicious update to the skill or a prompt injection could leverage these permissions for data exfiltration, system modification, or other harmful actions. Review and restrict the 'allowed-tools' to the absolute minimum necessary for the skill's intended functionality. Remove 'Bash' permission unless it is critically required and thoroughly justified. For filesystem operations, consider using more specific and sandboxed tools instead of broad 'Read', 'Write', 'Edit' access if possible. | LLM | SKILL.md:1 |
Scan History
Embed Code
[](https://skillshield.io/report/7f45b1642100e66e)
Powered by SkillShield