Skill audit report

Burpa audit report.

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

EXPERIMENTAL · REVIEWNeeds reviewGenerated Jun 17, 2026Heuristic metadata audit

Audit

Trust

Quality

Security

Maintain

Install

OpenAgentSkill Trust Score

Strong shortlist

Stars, maintenance, license, docs, install safety, permission surface, and installability.

The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.

GitHub adoption

INFO

535 GitHub stars

Stars/forks activity

INFO

535 stars, 116 forks; issue activity unavailable in current metadata

Recent maintenance

FAIL

8y since push

License clarity

PASS

GPL-3.0

README/SKILL.md completeness

PASS

Metadata includes enough usage and workflow context

Dependency/runtime risk

PASS

network or browser surface

Install availability

PASS

npx skills add 0x4D31/burpa

Install command safety

PASS

standard package or runtime install path

Permission surface

INFO

filesystem or document access, network or browser access

Repository evidence

PASS

https://github.com/0x4D31/burpa

Review status

PASS

AI review data available

Checks

Install and adoption review

8 passed · 7 review

Install path

PASS

npx skills add 0x4D31/burpa

Repository

PASS

https://github.com/0x4D31/burpa

License

PASS

GPL-3.0

Maintenance

FIX

8y since push

AI review

PASS

Approved with no listed issues

README/SKILL.md completeness

PASS

Usable description available

Dependency risk

PASS

network or browser surface

Install command safety

PASS

standard package or runtime install path

Permission surface

CHECK

filesystem or document access, network or browser access

Stars/forks activity

CHECK

535 stars, 116 forks; issue activity unavailable in current metadata

Adoption

PASS

535 GitHub stars

Warnings

Repository appears stale
Repository looks stale
Quality score needs review
Recent maintenance: 8y since push

Method

This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.

Install path

Review the report before installing into production agents.

$ npx skills add 0x4D31/burpa

Signals

Audit score: 66/100
Quality: 54/100
Trust: 76/100
Install safety: 92/100
Permission surface: 72/100
Maintenance: 8y since push
Events: 1 events
GitHub stars: 535
Last push: Aug 1, 2018

Agent safety v2

46/100 · Avoid automatic install

Experimentalreview

Sparse or mixed signals. Useful for discovery, but not for autonomous installation.

Test manually in an isolated workspace and compare against safer alternatives.

Repository appears stale
46/100 agent safety score

Browser automation

medium

Skill may drive a browser or interact with web pages.

Network access

medium

Skill likely fetches remote pages, APIs, repositories, or external services.

Filesystem access

medium

Skill may read or write project files, documents, generated artifacts, or local workspace state.

Repository appears stale

Back to skill Alternatives Audit badge SVG

Compare nearby options

Related skills to audit next

Maigret

🕵️‍♂️ Collect a dossier on a person by username from 3000+ sites

33K stars · Audit report

Nuclei

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

29K stars · Audit report

Wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

16K stars · Audit report