Skill audit report
Sgr audit report.
sgr (command line client for Splitgraph) and the splitgraph Python library
OpenAgentSkill Trust Score
Stars, maintenance, license, docs, install safety, permission surface, and installability.
The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.
GitHub adoption
INFO62
324 GitHub stars
Stars/forks activity
WARN57
324 stars, 19 forks; issue activity unavailable in current metadata
Recent maintenance
FAIL22
2y since push
License clarity
WARN42
Unknown
README/SKILL.md completeness
INFO74
Public metadata needs stronger README/SKILL.md context
Dependency/runtime risk
PASS82
database surface
Install availability
PASS92
npx skills add splitgraph/sgr
Install command safety
PASS92
standard package or runtime install path
Permission surface
WARN50
shell or command execution, filesystem or document access
Repository evidence
PASS86
https://github.com/splitgraph/sgr
Review status
PASS88
AI review data available
Agent Proven outcomes
INFO54
No agent outcome data yet
Checks
Install and adoption review
Install path
92
npx skills add splitgraph/sgr
Repository
88
https://github.com/splitgraph/sgr
License
45
Unknown
Maintenance
20
2y since push
AI review
88
Approved with no listed issues
README/SKILL.md completeness
84
Usable description available
Dependency risk
82
database surface
Install command safety
92
standard package or runtime install path
Permission surface
50
shell or command execution, filesystem or document access
Stars/forks activity
57
324 stars, 19 forks; issue activity unavailable in current metadata
Adoption
68
324 GitHub stars
Warnings
- License is unclear
- Permission surface may require sandboxing
- Repository appears stale
- Repository looks stale
- Quality score needs review
- Permission surface needs review: shell or command execution, filesystem or document access
- Stars/forks activity: 324 stars, 19 forks; issue activity unavailable in current metadata
- Recent maintenance: 2y since push
- License clarity: Unknown
- Permission surface: shell or command execution, filesystem or document access
Method
This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.
Compare nearby options