Skill audit report

Tokencost audit report.

Easy token price estimates for 400+ LLMs. TokenOps.

EXPERIMENTAL · REVIEWNeeds reviewGenerated Jun 19, 2026Heuristic metadata audit

Audit

Trust

Quality

Security

Maintain

Install

OpenAgentSkill Trust Score

Strong shortlist

Stars, maintenance, license, docs, install safety, permission surface, and installability.

The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.

GitHub adoption

PASS

2.0K GitHub stars

Stars/forks activity

INFO

2.0K stars, 104 forks; issue activity unavailable in current metadata

Recent maintenance

INFO

10mo since push

License clarity

PASS

MIT

README/SKILL.md completeness

INFO

Public metadata needs stronger README/SKILL.md context

Dependency/runtime risk

INFO

credential or environment access

Install availability

PASS

npx skills add AgentOps-AI/tokencost

Install command safety

PASS

standard package or runtime install path

Permission surface

WARN

secrets or environment access, filesystem or document access

Repository evidence

PASS

https://github.com/AgentOps-AI/tokencost

Review status

PASS

AI review data available

Checks

Install and adoption review

7 passed · 8 review

Install path

PASS

npx skills add AgentOps-AI/tokencost

Repository

PASS

https://github.com/AgentOps-AI/tokencost

License

PASS

MIT

Maintenance

CHECK

10mo since push

AI review

PASS

Approved with no listed issues

README/SKILL.md completeness

PASS

Usable description available

Dependency risk

CHECK

credential or environment access

Install command safety

PASS

standard package or runtime install path

Permission surface

CHECK

secrets or environment access, filesystem or document access

Stars/forks activity

CHECK

2.0K stars, 104 forks; issue activity unavailable in current metadata

Adoption

PASS

2.0K GitHub stars

Warnings

Permission surface may require sandboxing
Quality score needs review
Permission surface needs review: secrets or environment access, filesystem or document access
Permission surface: secrets or environment access, filesystem or document access

Method

This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.

Install path

Review the report before installing into production agents.

$ npx skills add AgentOps-AI/tokencost

Signals

Audit score: 82/100
Quality: 86/100
Trust: 83/100
Install safety: 92/100
Permission surface: 60/100
Maintenance: 10mo since push
Events: 3 events
GitHub stars: 2.0K
Last push: Sep 5, 2025

Agent safety v2

54/100 · Avoid automatic install

Experimentalreview

Sparse or mixed signals. Useful for discovery, but not for autonomous installation.

Test manually in an isolated workspace and compare against safer alternatives.

High-risk permission hints: Secrets or environment access
54/100 agent safety score

Network access

medium

Skill likely fetches remote pages, APIs, repositories, or external services.

Filesystem access

medium

Skill may read or write project files, documents, generated artifacts, or local workspace state.

Secrets or environment access

high

Skill metadata references credentials, tokens, environment variables, or secret-bearing workflows.

High-risk permission hints: Secrets or environment access
Permission surface may require sandboxing

Back to skill Alternatives Audit badge SVG

Compare nearby options

Related skills to audit next

Kubernetes

Production-Grade Container Scheduling and Management

123K stars · Audit report

Traefik

The Cloud Native Application Proxy

64K stars · Audit report

Etcd

Distributed reliable key-value store for the most critical data of a distributed system

52K stars · Audit report