Oathe Security Badge

Is Anmoldureha/flights-skill safe?

https://github.com/Anmoldureha/flights-skill

93
SAFE

This is a legitimate flight search skill that wraps the fast-flights Python library to provide Google Flights data. No malicious behavior, data exfiltration, or security vulnerabilities were detected during comprehensive monitoring and code analysis.

Category Scores

Prompt Injection 95/100 · 30%
Data Exfiltration 95/100 · 25%
Code Execution 85/100 · 20%
Clone Behavior 95/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 90/100 · 5%

Findings (2)

LOW Third-party Python package dependencies -10

The skill requires installation of external Python packages (fast-flights, typing-extensions) that have not been independently security audited. While these appear legitimate, they introduce potential supply chain risks.

INFO Python code execution -5

The skill contains executable Python scripts that will run when invoked. The code appears benign and limited to flight search functionality.