Skill audit report

Skill Base audit report.

Private Skill distribution platform for AI coding agents: publish, install, update, and rollback team skills across Cursor, Claude Code, Codex, and OpenClaw with a minimal server + skb CLI.

EXPERIMENTAL · REVIEWNeeds reviewGenerated Jun 23, 2026Heuristic metadata audit

Audit

Trust

Quality

Security

100

Maintain

Install

OpenAgentSkill Trust Score

Strong shortlist

Stars, maintenance, license, docs, install safety, permission surface, and installability.

The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.

GitHub adoption

INFO

103 GitHub stars

Stars/forks activity

WARN

103 stars, 22 forks; issue activity unavailable in current metadata

Recent maintenance

PASS

100

8d since push

License clarity

WARN

Unknown

README/SKILL.md completeness

PASS

100

Metadata includes enough usage and workflow context

Dependency/runtime risk

INFO

command execution surface

Install availability

PASS

npx skills add ginuim/skill-base

Install command safety

PASS

standard package or runtime install path

Permission surface

INFO

shell or command execution, filesystem or document access

Repository evidence

PASS

https://github.com/ginuim/skill-base

Review status

PASS

AI review data available

Real agent outcomes

INFO

No agent outcome data yet

Checks

Install and adoption review

6 passed · 8 review

Install path

PASS

npx skills add ginuim/skill-base

Repository

PASS

https://github.com/ginuim/skill-base

License

CHECK

Unknown

Maintenance

100

PASS

8d since push

AI review

PASS

Approved with no listed issues

README/SKILL.md completeness

100

PASS

Usable description available

Dependency risk

CHECK

command execution surface

Install command safety

PASS

standard package or runtime install path

Permission surface

CHECK

shell or command execution, filesystem or document access

Stars/forks activity

FIX

103 stars, 22 forks; issue activity unavailable in current metadata

Adoption

INFO

103 GitHub stars

Warnings

License is unclear
Quality score needs review
Stars/forks activity: 103 stars, 22 forks; issue activity unavailable in current metadata
License clarity: Unknown

Method

This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.

Install path

Review the report before installing into production agents.

$ npx skills add ginuim/skill-base

Agent-readable metadata

Machine decision packet

Embedded JSON exposes suited tasks, suited agents, install command, trust score, safety gate, alternatives, and do-not-use conditions for agent review.

Install policy: review
Best agents: Vue + Developer Tools
Alternatives: 3

Open agent JSON

Signals

Audit score: 81/100
Quality: 72/100
Trust: 77/100
Install safety: 92/100
Permission surface: 62/100
Maintenance: 8d since push
Events: 4 events
GitHub stars: 103
Last push: Jun 15, 2026

Agent safety v2

53/100 · Avoid automatic install

Experimentalreview

Sparse or mixed signals. Useful for discovery, but not for autonomous installation.

Test manually in an isolated workspace and compare against safer alternatives.

High-risk permission hints: Shell or command execution
53/100 agent safety score

Shell or command execution

high

Skill metadata references terminal, CLI, shell, subprocess, or command execution workflows.

Network access

medium

Skill likely fetches remote pages, APIs, repositories, or external services.

Filesystem access

medium

Skill may read or write project files, documents, generated artifacts, or local workspace state.

High-risk permission hints: Shell or command execution
License is unclear

Back to skill Alternatives Audit badge SVG

Compare nearby options

Skill Base audit report.

Stars, maintenance, license, docs, install safety, permission surface, and installability.

Install and adoption review

Related skills to audit next

Opencode

Puppeteer

Codex