Star0

Skill audit report

Holehe audit report.

holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.

REVIEWEDREVIEWNeeds reviewGenerated Jun 17, 2026Heuristic metadata audit
80
Audit
88
Trust
83
Quality
86
Security
38
Maintain
92
Install

OpenAgentSkill Trust Score

88
Production candidate

Stars, maintenance, license, docs, install safety, permission surface, and installability.

The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.

GitHub adoption

PASS

100

11K GitHub stars

Stars/forks activity

PASS

97

11K stars, 1.4K forks; issue activity unavailable in current metadata

Recent maintenance

FAIL

38

2y since push

License clarity

PASS

86

GPL-3.0

README/SKILL.md completeness

PASS

90

Metadata includes enough usage and workflow context

Dependency/runtime risk

PASS

90

no major dependency risk hints in public metadata

Install availability

PASS

92

npx skills add megadose/holehe

Install command safety

PASS

92

standard package or runtime install path

Permission surface

WARN

60

secrets or environment access, filesystem or document access

Repository evidence

PASS

86

https://github.com/megadose/holehe

Review status

PASS

88

AI review data available

Checks

Install and adoption review

9 passed 路 8 review

Install path

92

PASS

npx skills add megadose/holehe

Repository

88

PASS

https://github.com/megadose/holehe

License

86

PASS

GPL-3.0

Maintenance

38

FIX

2y since push

AI review

88

PASS

Approved with no listed issues

README/SKILL.md completeness

90

PASS

Usable description available

Dependency risk

90

PASS

no major dependency risk hints in public metadata

Install command safety

92

PASS

standard package or runtime install path

Permission surface

60

CHECK

secrets or environment access, filesystem or document access

Stars/forks activity

97

PASS

11K stars, 1.4K forks; issue activity unavailable in current metadata

Adoption

88

PASS

11K GitHub stars

Warnings

  • Permission surface may require sandboxing
  • Repository appears stale
  • Repository looks stale
  • Permission surface needs review: secrets or environment access, filesystem or document access
  • Recent maintenance: 2y since push
  • Permission surface: secrets or environment access, filesystem or document access

Method

This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.

Compare nearby options

Related skills to audit next

Ohmyzsh

馃檭 A delightful community-driven (with 2,500+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python, etc), 140+ themes to spice up your morning, and an auto-update tool that makes it easy to keep up with the latest updates from the community.

188K stars 路 Audit report

Excalidraw

Virtual whiteboard for sketching hand-drawn like diagrams

125K stars 路 Audit report

Novu

The open-source communication infrastructure for agents and products

39K stars 路 Audit report