Trust Assessment
specstory-yak received a trust score of 40/100, placing it in the Untrusted category. This skill has significant security findings that require attention before use in production.
SkillShield's automated analysis identified 3 findings: 1 critical, 2 high, 0 medium, and 0 low severity. Key findings include Arbitrary command execution, Dangerous call: subprocess.run(), Arbitrary File Write via Output Argument.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on June 1, 2026 (commit 9454d3f2). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings3
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands. | Manifest | skills/specstory-yak/scripts/lib/utils.py:25 | |
| HIGH | Dangerous call: subprocess.run() Call to 'subprocess.run()' detected in function 'get_git_author'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives. | Static | skills/specstory-yak/scripts/lib/utils.py:25 | |
| HIGH | Arbitrary File Write via Output Argument The skill allows users to specify an arbitrary output file path via the `-o` or `--output` command-line argument. The `Path(args.output).write_text()` call will write the generated report to this path. If an AI agent or a malicious user provides a path to a sensitive system file (e.g., `/etc/passwd`, `/root/.ssh/authorized_keys`), the skill could overwrite or create files in unintended locations, leading to denial of service, data corruption, or potential privilege escalation. This grants the skill excessive write permissions beyond its intended scope of writing reports within a user's project directory. Restrict the output path to a safe, designated directory (e.g., a temporary directory, a subdirectory of the current working directory, or a user-confirmed location). Implement path sanitization to prevent directory traversal (`../`) and disallow absolute paths or paths outside the intended working directory. Alternatively, prompt the user for confirmation before writing to paths outside the project scope. | Static | scripts/analyze.py:78 |
Scan History
Embed Code
[](https://skillshield.io/report/ef6058ff946d117a)
Powered by SkillShield