Agent Skill Trust Check
Review public SKILL.md files and agent-skill repos for risky install instructions, secret handling, network calls, and trust signals before adoption.
Install
mkdir -p .claude/skills/agent-skill-trust-check && curl -L -o skill.zip "https://mcp.directory/api/skills/download/9524" && unzip -o skill.zip -d .claude/skills/agent-skill-trust-check && rm skill.zipInstalls to .claude/skills/agent-skill-trust-check
About this skill
Agent Skill Trust Check
Use this skill before installing a third-party agent skill, SKILL.md package, MCP-linked skill, or marketplace listing.
What This Skill Does
- Reads a public or local skill description before install.
- Flags patterns that deserve review: shell execution, destructive commands, secrets, wallet/payment actions, network output, persistence, and prompt-boundary issues.
- Separates basic provenance signals from risky behavior signals.
- Produces a patch order that a maintainer can resolve before the skill is trusted.
When To Use
Use this when an agent is about to install or recommend a skill from:
- OpenClaw, Hermes, or ClawHub-style marketplaces.
- Claude Code, Codex, Cursor, Windsurf, or Gemini skill directories.
- MCP-linked skill bundles.
- GitHub repositories that include a
SKILL.md, tool manifest, or install script.
Run With npm
npx --yes agent-skill-trust-check@latest ./SKILL.md --json
Run From The Public Repo
git clone https://github.com/TateLyman/agent-skill-trust-check.git
cd agent-skill-trust-check
npm run check
node bin/agent-skill-trust-check.js ./SKILL.md
Marketplace-safe stdin mode:
node bin/agent-skill-trust-check-stdin.js < ./SKILL.md
For JSON output:
node bin/agent-skill-trust-check.js ./SKILL.md --json
Review Rules
Before installation, check:
- Does the skill run shell commands, package installers, or process-spawn APIs?
- Does it read secrets, environment variables, wallet data, credentials, cookies, or private keys?
- Does it send content to remote URLs or webhooks?
- Does it create persistent background jobs?
- Does it ask the agent to ignore or override higher-priority instructions?
- Does it document source, license, version, tests, permissions, and uninstall steps?
Boundaries
This is a static pre-install check. The marketplace-safe runner reads only stdin and returns JSON. The local CLI can also read a local path or a public GitHub/raw/Gist URL when run from the repository checkout. Neither mode executes the target skill or proves the runtime is safe.
For marketplace-grade review, use the paid Agent Skill Trust Check listing:
More by Community
View all skills by Community →You might also like
ui-ux-pro-max
nextlevelbuilder
"UI/UX design intelligence. 50 styles, 21 palettes, 50 font pairings, 20 charts, 8 stacks (React, Next.js, Vue, Svelte, SwiftUI, React Native, Flutter, Tailwind). Actions: plan, build, create, design, implement, review, fix, improve, optimize, enhance, refactor, check UI/UX code. Projects: website, landing page, dashboard, admin panel, e-commerce, SaaS, portfolio, blog, mobile app, .html, .tsx, .vue, .svelte. Elements: button, modal, navbar, sidebar, card, table, form, chart. Styles: glassmorphism, claymorphism, minimalism, brutalism, neumorphism, bento grid, dark mode, responsive, skeuomorphism, flat design. Topics: color palette, accessibility, animation, layout, typography, font pairing, spacing, hover, shadow, gradient."
flutter-development
aj-geddes
Build beautiful cross-platform mobile apps with Flutter and Dart. Covers widgets, state management with Provider/BLoC, navigation, API integration, and material design.
pdf-to-markdown
aliceisjustplaying
Convert entire PDF documents to clean, structured Markdown for full context loading. Use this skill when the user wants to extract ALL text from a PDF into context (not grep/search), when discussing or analyzing PDF content in full, when the user mentions "load the whole PDF", "bring the PDF into context", "read the entire PDF", or when partial extraction/grepping would miss important context. This is the preferred method for PDF text extraction over page-by-page or grep approaches.
drawio-diagrams-enhanced
jgtolentino
Create professional draw.io (diagrams.net) diagrams in XML format (.drawio files) with integrated PMP/PMBOK methodologies, extensive visual asset libraries, and industry-standard professional templates. Use this skill when users ask to create flowcharts, swimlane diagrams, cross-functional flowcharts, org charts, network diagrams, UML diagrams, BPMN, project management diagrams (WBS, Gantt, PERT, RACI), risk matrices, stakeholder maps, or any other visual diagram in draw.io format. This skill includes access to custom shape libraries for icons, clipart, and professional symbols.
godot
bfollington
This skill should be used when working on Godot Engine projects. It provides specialized knowledge of Godot's file formats (.gd, .tscn, .tres), architecture patterns (component-based, signal-driven, resource-based), common pitfalls, validation tools, code templates, and CLI workflows. The `godot` command is available for running the game, validating scripts, importing resources, and exporting builds. Use this skill for tasks involving Godot game development, debugging scene/resource files, implementing game systems, or creating new Godot components.
nano-banana-pro
garg-aayush
Generate and edit images using Google's Nano Banana Pro (Gemini 3 Pro Image) API. Use when the user asks to generate, create, edit, modify, change, alter, or update images. Also use when user references an existing image file and asks to modify it in any way (e.g., "modify this image", "change the background", "replace X with Y"). Supports both text-to-image generation and image-to-image editing with configurable resolution (1K default, 2K, or 4K for high resolution). DO NOT read the image file first - use this skill directly with the --input-image parameter.
Related MCP Servers
Browse all serversUse our diff checker online to compare files on line. Generate unified diffs with precise 3-line context for easy code review and version control.
Optimize your codebase for AI with Repomix—transform, compress, and secure repos for easier analysis with modern AI tools.
Supercharge AI platforms with Azure MCP Server for seamless Azure API Management and resource automation. Public Preview now available!
Unlock powerful OLAP database analytics on ClickHouse MCP Server. Manage OLAP data with seamless online analytical processing and robust workflows.
Reddit Buddy offers powerful Reddit API tools for browsing, searching, and data annotation with secure access, rate limits, and OAuth support.
Reddit Buddy offers clean access to Reddit API, advanced reddit tools, and seamless data annotation reddit with smart caching and rate limiting.