Oathe Security Badge

Is frankhuhu01/dangerous-skills safe?

https://github.com/frankhuhu01/dangerous-skills

89
SAFE

This repository is a security testing fixture with an empty SKILL.md file, providing no functional skill content for AI agents. While it contains educational examples of dangerous code patterns, these are clearly marked as test content and pose no direct threat since no skill functionality would be loaded.

Category Scores

Prompt Injection 85/100 · 30%
Data Exfiltration 95/100 · 25%
Code Execution 100/100 · 20%
Clone Behavior 100/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 85/100 · 5%

Findings (3)

INFO Empty SKILL.md file -15

The SKILL.md file that would contain agent instructions is completely empty, meaning this repository provides no functional skill content for AI agents.

LOW Token-like string in test content -5

A string resembling a GitLab token appears in the test file, though it's marked as part of educational content about credential exposure.

INFO Security testing repository -10

This repository appears designed to test security detection systems rather than provide functional skill content. Contains educational examples of dangerous patterns clearly marked as test fixtures.