Star0

Skill audit report

ScanCannon audit report.

A script for credentials-based attack surface enumeration and general reconnaissance of massive networks

EXPERIMENTAL · REVIEWNeeds reviewGenerated Jun 17, 2026Heuristic metadata audit
82
Audit
77
Trust
79
Quality
75
Security
100
Maintain
92
Install

OpenAgentSkill Trust Score

77
Strong shortlist

Stars, maintenance, license, docs, install safety, permission surface, and installability.

The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.

GitHub adoption

INFO

62

476 GitHub stars

Stars/forks activity

INFO

62

476 stars, 76 forks; issue activity unavailable in current metadata

Recent maintenance

PASS

100

1d since push

License clarity

WARN

42

Unknown

README/SKILL.md completeness

PASS

90

Metadata includes enough usage and workflow context

Dependency/runtime risk

INFO

72

command execution surface

Install availability

PASS

92

npx skills add johnnyxmas/ScanCannon

Install command safety

PASS

92

standard package or runtime install path

Permission surface

WARN

48

shell or command execution, filesystem or document access

Repository evidence

PASS

86

https://github.com/johnnyxmas/ScanCannon

Review status

PASS

88

AI review data available

Checks

Install and adoption review

6 passed · 10 review

Install path

92

PASS

npx skills add johnnyxmas/ScanCannon

Repository

88

PASS

https://github.com/johnnyxmas/ScanCannon

License

45

CHECK

Unknown

Maintenance

100

PASS

1d since push

AI review

88

PASS

Approved with no listed issues

README/SKILL.md completeness

90

PASS

Usable description available

Dependency risk

72

CHECK

command execution surface

Install command safety

92

PASS

standard package or runtime install path

Permission surface

48

FIX

shell or command execution, filesystem or document access

Stars/forks activity

62

CHECK

476 stars, 76 forks; issue activity unavailable in current metadata

Adoption

68

INFO

476 GitHub stars

Warnings

  • License is unclear
  • Permission surface may require sandboxing
  • Quality score needs review
  • Permission surface needs review: shell or command execution, filesystem or document access
  • License clarity: Unknown
  • Permission surface: shell or command execution, filesystem or document access

Method

This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.

Compare nearby options

Related skills to audit next

Maigret

🕵️‍♂️ Collect a dossier on a person by username from 3000+ sites

33K stars · Audit report

Nuclei

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

29K stars · Audit report

Wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

16K stars · Audit report