Scan Report
5 /100
skill-param-confirmer
A robust preflight parameter confirmation layer for downstream skills. Validates explicit parameters, constructs missing or ambiguous parameters for user confirmation, and ensures complete, structured input before execution.
This is a legitimate parameter confirmation/safety layer skill with no security issues — it only validates and confirms parameters for downstream skills without executing code, accessing sensitive resources, or performing any network/shell operations.
Safe to install
No action needed. This skill is safe to use as a preflight parameter validation layer.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | SKILL.md — no filesystem access mentioned or implied |
| Network | NONE | NONE | — | SKILL.md — no network requests mentioned or implied |
| Shell | NONE | NONE | — | SKILL.md — no shell execution mentioned or implied |
| Environment | NONE | NONE | — | SKILL.md — no environment variable access mentioned or implied |
| Skill Invoke | NONE | NONE | — | SKILL.md — skill only prepares parameters; does not invoke downstream skills dir… |
| Clipboard | NONE | NONE | — | SKILL.md — no clipboard access mentioned |
| Browser | NONE | NONE | — | SKILL.md — no browser access mentioned |
| Database | NONE | NONE | — | SKILL.md — no database access mentioned |
File Tree
1 files · 10.1 KB · 326 lines Markdown 1f · 326L
└─
SKILL.md
Markdown
Security Positives
✓ Pure parameter validation and confirmation layer — does not execute any business logic
✓ No shell, filesystem, network, or credential access
✓ Built-in risk quantification (High/Medium/Low) for downstream actions
✓ Safety-first design: high-risk operations always require explicit user confirmation
✓ No auto-confirmation for destructive or externally visible actions
✓ Auditability: every step, timestamp, and decision is logged
✓ No obfuscation, encoded commands, or anti-analysis patterns
✓ No external dependencies or supply chain risks