Trusted
Security Findings(1)
Suspicious npm/pip package install
highSkill instructs installation of a non-standard package. Verify the package name.
pip install pypdf Verify this package exists on the official registry and is the intended package.
malware-deliverySK-014
Score Breakdown
Code Analysis80/100 (30%)
Dependency Health65/100 (20%)
Permission Safety100/100 (20%)
Behavioral Stability80/100 (15%)
Transparency70/100 (15%)
Skill Info
- Trust Level
- trusted
- File Type
- skill.md
- Platform
- Claude Code
- Scope
- project
- Source
- github
- Content Hash
- 9e6d5e8e810f...
- Last Scanned
- 2/20/2026