Skill audit report
Grace Marketplace audit report.
GRACE (Graph-RAG Anchored Code Engineering): open Agent Skills for contract-driven AI code generation with semantic markup, knowledge graphs, and support for Claude Code, Codex CLI, and Kilo Code.
OpenAgentSkill Trust Score
Stars, maintenance, license, docs, install safety, permission surface, and installability.
The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.
GitHub adoption
INFO62
213 GitHub stars
Stars/forks activity
WARN57
213 stars, 49 forks; issue activity unavailable in current metadata
Recent maintenance
PASS100
14d since push
License clarity
PASS86
MIT
README/SKILL.md completeness
PASS90
Metadata includes enough usage and workflow context
Dependency/runtime risk
INFO72
command execution surface
Install availability
PASS92
npx skills add osovv/grace-marketplace
Install command safety
PASS92
standard package or runtime install path
Permission surface
INFO62
shell or command execution, filesystem or document access
Repository evidence
PASS86
https://github.com/osovv/grace-marketplace
Review status
PASS88
AI review data available
Agent Proven outcomes
INFO54
No agent outcome data yet
Checks
Install and adoption review
Install path
92
npx skills add osovv/grace-marketplace
Repository
88
https://github.com/osovv/grace-marketplace
License
86
MIT
Maintenance
100
14d since push
AI review
88
Approved with no listed issues
README/SKILL.md completeness
90
Usable description available
Dependency risk
72
command execution surface
Install command safety
92
standard package or runtime install path
Permission surface
62
shell or command execution, filesystem or document access
Stars/forks activity
57
213 stars, 49 forks; issue activity unavailable in current metadata
Adoption
68
213 GitHub stars
Warnings
- Quality score needs review
- Stars/forks activity: 213 stars, 49 forks; issue activity unavailable in current metadata
Method
This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.
Compare nearby options
Related skills to audit next
Gemini CLI
Bring a coding agent directly into the terminal
106K stars · Audit report
System Prompts And Models Of AI Tools
FULL Augment Code, Claude Code, Cluely, CodeBuddy, Comet, Cursor, Devin AI, Junie, Kiro, Leap.new, Lovable, Manus, NotionAI, Orchids.app, Perplexity, Poke, Qoder, Replit, Same.dev, Trae, Traycer AI, VSCode Agent, Warp.dev, Windsurf, Xcode, Z.ai Code, Dia & v0. (And other Open Sourced) System Prompts, Internal Tools & AI Models
141K stars · Audit report
Caveman
🪨 why use many token when few token do trick — Claude Code skill that cuts 65% of tokens by talking like caveman
83K stars · Audit report