Skill audit report

WeIdentity audit report.

基于区块链的符合W3C DID和Verifiable Credential规范的分布式身份解决方案

EXPERIMENTAL · REVIEWNeeds reviewGenerated Jun 17, 2026Heuristic metadata audit

Audit

Trust

Quality

Security

Maintain

Install

OpenAgentSkill Trust Score

Strong shortlist

Stars, maintenance, license, docs, install safety, permission surface, and installability.

The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.

GitHub adoption

PASS

1.1K GitHub stars

Stars/forks activity

INFO

1.1K stars, 176 forks; issue activity unavailable in current metadata

Recent maintenance

FAIL

1y since push

License clarity

PASS

Apache-2.0

README/SKILL.md completeness

INFO

Public metadata needs stronger README/SKILL.md context

Dependency/runtime risk

INFO

credential or environment access

Install availability

PASS

npx skills add WeBankBlockchain/WeIdentity

Install command safety

PASS

standard package or runtime install path

Permission surface

WARN

secrets or environment access, filesystem or document access

Repository evidence

PASS

https://github.com/WeBankBlockchain/WeIdentity

Review status

PASS

AI review data available

Checks

Install and adoption review

7 passed · 11 review

Install path

PASS

npx skills add WeBankBlockchain/WeIdentity

Repository

PASS

https://github.com/WeBankBlockchain/WeIdentity

License

PASS

Apache-2.0

Maintenance

FIX

1y since push

AI review

PASS

Approved with no listed issues

README/SKILL.md completeness

PASS

Usable description available

Dependency risk

CHECK

credential or environment access

Install command safety

PASS

standard package or runtime install path

Permission surface

CHECK

secrets or environment access, filesystem or document access

Stars/forks activity

CHECK

1.1K stars, 176 forks; issue activity unavailable in current metadata

Adoption

PASS

1.1K GitHub stars

Warnings

Permission surface may require sandboxing
Repository appears stale
Repository looks stale
Quality score needs review
Permission surface needs review: secrets or environment access, filesystem or document access
Recent maintenance: 1y since push
Permission surface: secrets or environment access, filesystem or document access

Method

This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.

Install path

Review the report before installing into production agents.

$ npx skills add WeBankBlockchain/WeIdentity

Signals

Audit score: 73/100
Quality: 71/100
Trust: 80/100
Install safety: 92/100
Permission surface: 60/100
Maintenance: 1y since push
Events: No events yet
GitHub stars: 1.1K
Last push: Apr 18, 2025

Agent safety v2

45/100 · Avoid automatic install

Experimentalreview

Sparse or mixed signals. Useful for discovery, but not for autonomous installation.

Test manually in an isolated workspace and compare against safer alternatives.

High-risk permission hints: Secrets or environment access
45/100 agent safety score

Network access

medium

Skill likely fetches remote pages, APIs, repositories, or external services.

Filesystem access

medium

Skill may read or write project files, documents, generated artifacts, or local workspace state.

Secrets or environment access

high

Skill metadata references credentials, tokens, environment variables, or secret-bearing workflows.

High-risk permission hints: Secrets or environment access
Permission surface may require sandboxing

Back to skill Alternatives Audit badge SVG

Compare nearby options

Related skills to audit next

Bolts

BOLT: Basis of Lightning Technology (Lightning Network Specifications)

2.2K stars · Audit report

Chainquery

Chainquery parses and syncs the LBRY blockchain data into structured SQL

2.2K stars · Audit report

Revm

Rust implementation of the Ethereum Virtual Machine.

2.2K stars · Audit report