grimmory-self-hosted-library

github.com/aradotso/trending-skills
Verdict: Do not install
1 critical1 high1 medium
D
SCORE 30 / 100
$skillox install grimmory-self-hosted-librarySoon
Sign in to followFollowing emails you when a re-scan drops the grade. Opt-out is per-creator on /account/billing.

Why grade D?

score · 30 / 100

The current grade reflects 1 critical finding (any single CRIT → D).

1 CRIT1 HIGH1 MED0 LOW
To reach a higher grade
  • C
    Reach Ctarget score 55

    Resolve all 1 CRIT findings.

  • B
    Reach Btarget score 75

    Resolve all 1 CRIT.

  • A
    Reach Atarget score 95

    Resolve all 1 CRIT + all 1 HIGH.

Thresholds are documented at /docs/grading. Source-of-truth is the grade() function in @skillox/scanner.

Latest scan findings

Scan crawl-uuw5okqjuh38m4kse6eom33m · Thu, 28 May 2026 17:13:34 GMT · 3ms

crit
Skill references secret env var ${DATABASE_URL}
The skill instructions reference `${DATABASE_URL}`, which contains a credential. If an attacker can lure the agent into including this in an outbound URL or message, the credential leaks.
rule: env-var-harvestingline: 63CWE-200
61 - GROUP_ID=${APP_GROUP_ID}
62 - TZ=${TZ}
63 - DATABASE_URL=${DATABASE_URL}references ${DATABASE_URL} — potential credential leak
64 - DATABASE_USERNAME=${DB_USER}
65 - DATABASE_PASSWORD=${DB_PASSWORD}
high
Dangerous shell pattern: wget -O -
The skill contains a shell command pattern (`wget -O -`) commonly used in destructive or supply-chain attacks.
rule: dangerous-shellline: 77CWE-78
75 - ./bookdrop:/bookdrop
76 healthcheck:
77 test: wget -q -O - http://localhost:6060/api/v1/healthcheckwget -O - — common in destructive or supply-chain attacks
78 interval: 60s
79 retries: 5
med
No capability manifest declared
The skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.
rule: no-manifest
View latest scan →
skillox.io/c/grimmory-self-hosted-library