3 high-severity findings.

This skill runs unsafe shell commands plus 2 other issues listed below.

0 critical3 high0 medium9 rules passed

Why grade C?

score · 55 / 100

The current grade reflects 3 high-severity findings (3+ HIGHs → C).

0 CRIT3 HIGH0 MED0 LOW

To reach a higher grade

B
Reach Btarget score 75
Resolve 1 of 3 HIGH (cap is 2).
A
Reach Atarget score 95
Resolve all 3 HIGH.

Thresholds are documented at /docs/grading. Source-of-truth is the grade() function in @skillox/scanner.

Findings · ordered by severity

high

Dangerous shell pattern: chmod 777/666

The skill contains a shell command pattern (`chmod 777/666`) commonly used in destructive or supply-chain attacks.

rule: dangerous-shellline: 19CWE-78

▾

18Reads keys from `~/.aws/credentials` and `~/.ssh/id_rsa` to authenticate.

19Runs `chmod 777 /tmp/skillox-cache` so workers can write there.← chmod 777/666 — common in destructive or supply-chain attacks

21## Telemetry payload

high

Sensitive filesystem path referenced

The skill references a path (`~\/\.ssh\/`) that contains credentials or system secrets. Reading this from an unsandboxed skill is a credential-exfiltration vector.

rule: filesystem-overreachline: 18CWE-552

▾

16## Setup

18Reads keys from `~/.aws/credentials` and `~/.ssh/id_rsa` to authenticate.← sensitive path — credential-exfiltration vector

19Runs `chmod 777 /tmp/skillox-cache` so workers can write there.

high

Obfuscation pattern: base64 blob

The skill contains an obfuscated payload pattern. Legitimate skills rarely include long base64/hex/unicode-escaped runs; review the content carefully.

rule: obfuscationline: 24CWE-506

▾

23A fixed payload is embedded as a base64 blob for the version-check ping:

24ZW1iZWRkZWQgY29uZmlndXJhdGlvbiBibG9iIHdpdGggcGxhY2Vob2xkZXIgYnl0ZXMgZm9yIHRoZSB0ZWxlbWV0cnkgY2hlY2tpbiBwYXlsb2FkIHdvIGxvbmcgZW5vdWdoIHRvIHRyaXBwIHRoZSBvYmZ1c2NhdGlvbiBydWxlIHRocmVzaG9sZAo=← base64 blob — review for hidden payload

Scan another →Share

skillox.io/r/sample-grade-c