Soar Eval
=========

Status: failed
Score: 71/100
Risk: high
Decision: do_not_auto_install
Policy: block
Reason: Permission surface: shell or command execution, filesystem or document access

Install:
npx skills add XiaoMi/soar

Required checks:
- PASS Task fit: Task wording matches this skill metadata.
- PASS Install path: Install handoff is available.
- PASS Install command safety: standard package or runtime install path
- WARN Trust score: Good trust signals with a few areas worth checking before rollout.
- WARN Audit score: Needs review
- WARN Agent safety gate: Sparse or mixed signals. Useful for discovery, but not for autonomous installation.
- PASS License clarity: Apache-2.0
- FAIL Permission surface: shell or command execution, filesystem or document access

Warnings:
- Trust score: Good trust signals with a few areas worth checking before rollout.
- Audit score: Needs review
- Agent safety gate: Sparse or mixed signals. Useful for discovery, but not for autonomous installation.
- README/SKILL.md completeness: Public metadata needs stronger README/SKILL.md context
- High-risk permission hints: Shell or command execution
- Permission surface may require sandboxing
- Repository appears stale
- Repository looks stale
- Quality score needs review
- Documentation summary is thin
- Permission surface needs review: shell or command execution, filesystem or document access
- Recent maintenance: 3y since push

Validation plan:
1. Inspect repository, README/SKILL.md, license, and recent commits before production use.
2. Install in an isolated workspace or sandbox with no production secrets available.
3. Run the smallest representative task and record files touched, commands run, network access, and outputs.
4. Compare the selected skill against at least one alternative when the eval status is review or failed.
5. Promote only after the agent reports a successful verification result and unresolved warnings are accepted.

Do not use when:
- teams that require actively maintained dependencies
- production agents without a repository review
- Repository looks stale
- High-risk permission hints: Shell or command execution
- Permission surface may require sandboxing
- Repository appears stale
- Quality score needs review
- Documentation summary is thin

URLs:
- Skill: https://www.openagentskill.com/skills/xiaomi-soar
- Audit: https://www.openagentskill.com/skills/xiaomi-soar/audit
- JSON: https://www.openagentskill.com/api/agent/evals?slug=xiaomi-soar