Skill audit report
Scan4secrets audit report.
SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source code scanner and for URL that detects hardcoded secrets like API keys, credentials, and sensitive information across files and folders.
OpenAgentSkill Trust Score
Stars, maintenance, license, docs, install safety, permission surface, and installability.
The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.
GitHub adoption
INFO62
113 GitHub stars
Stars/forks activity
WARN57
113 stars, 32 forks; issue activity unavailable in current metadata
Recent maintenance
PASS88
2mo since push
License clarity
PASS86
MIT
README/SKILL.md completeness
PASS90
Metadata includes enough usage and workflow context
Dependency/runtime risk
PASS82
network or browser surface
Install availability
PASS92
npx skills add m14r41/scan4secrets
Install command safety
PASS92
standard package or runtime install path
Permission surface
INFO72
filesystem or document access, network or browser access
Repository evidence
PASS86
https://github.com/m14r41/scan4secrets
Review status
PASS88
AI review data available
Agent Proven outcomes
INFO54
No agent outcome data yet
Checks
Install and adoption review
Install path
92
npx skills add m14r41/scan4secrets
Repository
88
https://github.com/m14r41/scan4secrets
License
86
MIT
Maintenance
88
2mo since push
AI review
88
Approved with no listed issues
README/SKILL.md completeness
90
Usable description available
Dependency risk
82
network or browser surface
Install command safety
92
standard package or runtime install path
Permission surface
72
filesystem or document access, network or browser access
Stars/forks activity
57
113 stars, 32 forks; issue activity unavailable in current metadata
Adoption
68
113 GitHub stars
Warnings
- Quality score needs review
- Stars/forks activity: 113 stars, 32 forks; issue activity unavailable in current metadata
Method
This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.
Compare nearby options
Related skills to audit next
Maigret
🕵️♂️ Collect a dossier on a person by username from 3000+ sites
33K stars · Audit report
Nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
29K stars · Audit report
Infisical
Infisical is the open-source platform for secrets, certificates, and privileged access management.
27K stars · Audit report