Skill audit report

Lockenv audit report.

Simple, password-based encrypted vault for .env and infrastructure secrets. Like git-crypt or sops, but dramatically simpler. Ideal for small teams and IaC workflows

BLOCKED · BLOCKNeeds reviewGenerated Jul 3, 2026Heuristic metadata audit
80
Audit
73
Trust
79
Quality
79
Security
88
Maintain
92
Install

OpenAgentSkill Trust Score

73
Strong shortlist

Stars, maintenance, license, docs, install safety, permission surface, and installability.

The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.

GitHub adoption

INFO

62

282 GitHub stars

Stars/forks activity

WARN

51

282 stars, 6 forks; issue activity unavailable in current metadata

Recent maintenance

PASS

88

1mo since push

License clarity

PASS

86

MIT

README/SKILL.md completeness

PASS

90

Metadata includes enough usage and workflow context

Dependency/runtime risk

WARN

54

command execution surface, credential or environment access

Install availability

PASS

92

npx skills add illarion/lockenv

Install command safety

PASS

92

standard package or runtime install path

Permission surface

FAIL

36

secrets or environment access, shell or command execution

Repository evidence

PASS

86

https://github.com/illarion/lockenv

Review status

PASS

88

AI review data available

Agent Proven outcomes

INFO

54

No agent outcome data yet

Checks

Install and adoption review

7 passed · 10 review

Install path

92

PASS

npx skills add illarion/lockenv

Repository

88

PASS

https://github.com/illarion/lockenv

License

86

PASS

MIT

Maintenance

88

PASS

1mo since push

AI review

88

PASS

Approved with no listed issues

README/SKILL.md completeness

90

PASS

Usable description available

Dependency risk

54

FIX

command execution surface, credential or environment access

Install command safety

92

PASS

standard package or runtime install path

Permission surface

36

FIX

secrets or environment access, shell or command execution

Stars/forks activity

51

FIX

282 stars, 6 forks; issue activity unavailable in current metadata

Adoption

68

INFO

282 GitHub stars

Warnings

  • Dependency or permission surface needs review
  • Permission surface may require sandboxing
  • Quality score needs review
  • Permission surface needs review: secrets or environment access, shell or command execution
  • Stars/forks activity: 282 stars, 6 forks; issue activity unavailable in current metadata
  • Dependency/runtime risk: command execution surface, credential or environment access
  • Permission surface: secrets or environment access, shell or command execution

Method

This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.

Compare nearby options

Related skills to audit next