Skip to content

Add SafeSkill security badge (95/100 β€” Verified Safe)#1

Open
OyaAIProd wants to merge 1 commit intofelipetodev:mainfrom
OyaAIProd:safeskill-scan-1776132391992
Open

Add SafeSkill security badge (95/100 β€” Verified Safe)#1
OyaAIProd wants to merge 1 commit intofelipetodev:mainfrom
OyaAIProd:safeskill-scan-1776132391992

Conversation

@OyaAIProd
Copy link
Copy Markdown

@OyaAIProd OyaAIProd commented Apr 14, 2026

βœ… SafeSkill Security Scan Results

Metric Value
Overall Score 95/100 (Verified Safe)
Code Score 99/100
Content Score 88/100
Findings 16 findings detected (2 critical)
Taint Flows 0
Files Scanned 30
Scan Duration 4.8s

Note: This package is a CLI tool β€” child_process, filesystem, and environment access are expected capabilities and are excluded from scoring and top findings.

Top Findings

  • 🟑 medium: Makes HTTP request via fetch (src/services/http/request.ts:66)
  • 🟑 medium: Makes HTTP request via fetch() (src/services/http/request.ts:66)
  • βšͺ low: Contains external URL (src/constants.ts:9)
  • βšͺ low: Contains external URL (src/constants.ts:12)
  • βšͺ low: Contains external URL (src/commands/login.ts:78)

View full report on SafeSkill

About SafeSkill

SafeSkill is a free, open-source security scanner for AI tools, MCP servers, and Claude Code skills. We scan for code exploits, prompt injection, and data exfiltration risks.

False positive? We take accuracy seriously. If any finding above is incorrect, please open an issue and we will fix it immediately.

@OyaAIProd
Add SafeSkill security badge (95/100)
2604491 
Signed-off-by: SafeSkill Scanner <mk@oya.ai>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@OyaAIProd