Security Audit

curate-a-team-library

github.com/skillcreatorai/Ai-Agent-Skills

AI SkillCommit 039ad59e2a12

TRUSTED

Scanned 3 days ago

Critical

Immediate action required

High

Priority fixes suggested

Medium

Best practices review

Low

Acknowledged / Tracked

Trust Assessment

curate-a-team-library received a trust score of 78/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.

SkillShield's automated analysis identified 2 findings: 0 critical, 1 high, 1 medium, and 0 low severity. Key findings include Potential Command Injection via unsanitized user input to npx commands, Supply Chain Risk: Unpinned `npx` dependency.

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.

Last analyzed on June 1, 2026 (commit 039ad59e). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis

100%

Static Code Analysis

78%

Dependency Graph

100%

LLM Behavioral Safety

100%

Behavioral Risk Signals

Network Access

1 finding

Shell Execution

2 findings

Dynamic Code

1 finding

Security Findings2

Severity	Finding	Layer	Location
HIGH	Potential Command Injection via unsanitized user input to npx commands The skill instructs the agent to execute `npx ai-agent-skills` commands with parameters (`<name>`, `<query>`, `<skill>`) that are likely to be derived from untrusted user input. If the agent does not properly sanitize or shell-escape these inputs before constructing and executing the shell command, a malicious user could inject arbitrary commands, leading to remote code execution. The agent executing this skill must ensure all user-provided arguments passed to `npx ai-agent-skills` commands are properly sanitized and shell-escaped to prevent command injection. For example, using a library function that safely escapes shell arguments before execution. This applies to parameters like `<name>`, `<query>`, and `<skill>`.	Static	SKILL.md:17
MEDIUM	Supply Chain Risk: Unpinned `npx` dependency The skill instructs the agent to use `npx ai-agent-skills` without specifying a version. This means the latest version of the `ai-agent-skills` package will always be fetched and executed. This introduces a supply chain risk, as a future compromised or malicious version of the package could be automatically pulled and executed without explicit review. It also increases the risk of unexpected breaking changes. Specify a pinned version for the `ai-agent-skills` package (e.g., `npx ai-agent-skills@1.2.3 init-library <name>`) to ensure consistent and vetted execution. Regularly review and update the pinned version to incorporate necessary security fixes and features.	Static	SKILL.md:16

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/9df805ff13f344e0.svg)](https://skillshield.io/report/9df805ff13f344e0)