Pre-install eval
Tiktok Signature eval report.
A machine-readable install decision for agents: task fit, Trust Score, Audit Score, install safety, permission surface, and a concrete validation plan before this skill touches a workspace.
manual review
Test manually in an isolated workspace and compare against safer alternatives.
Required gates
Checks an agent must pass before install
Task fit
84
Task wording matches this skill metadata.
- Evaluate Tiktok Signature before installing it in an agent workflow
- browser-automation
- Browser automation workflows; Claude Code teams; teams that value GitHub adoption signals
Install path
92
Install handoff is available.
- npx skills add carcabot/tiktok-signature
Install command safety
92
standard package or runtime install path
- npx skills add carcabot/tiktok-signature
Trust score
71
Potentially useful, but at least one trust signal needs human inspection.
- Manual review
- 981 GitHub stars
- Unknown
Audit score
77
Needs review
- License is unclear
Agent safety gate
49
Sparse or mixed signals. Useful for discovery, but not for autonomous installation.
- Test manually in an isolated workspace and compare against safer alternatives.
- High-risk permission hints: Secrets or environment access
License clarity
42
Unknown
- Unknown
Permission surface
60
secrets or environment access, network or browser access
- Browser automation: medium
- Network access: medium
- Secrets or environment access: high
Validation plan
What the agent should do next
- 1Inspect repository, README/SKILL.md, license, and recent commits before production use.
- 2Install in an isolated workspace or sandbox with no production secrets available.
- 3Run the smallest representative task and record files touched, commands run, network access, and outputs.
- 4Compare the selected skill against at least one alternative when the eval status is review or failed.
- 5Promote only after the agent reports a successful verification result and unresolved warnings are accepted.
Do not use when
Conditions that require another skill
- teams that need a vendor-supported SLA
- high-compliance environments without internal security review
- No major risk signals from current metadata
- High-risk permission hints: Secrets or environment access
- License is unclear
- Permission surface may require sandboxing
Supporting checks
Trust signals behind the decision
README/SKILL.md completeness
fail50
Public metadata needs stronger README/SKILL.md context
Recent maintenance
pass88
1mo since push
Alternatives available
pass82
Alternative skills are available for comparison.