Oathe Security Badge

Is ktaletsk/learn-codebase safe?

https://github.com/ktaletsk/learn-codebase

98
SAFE

This is a legitimate educational skill designed to teach codebase understanding through Socratic questioning methods. It operates in read-only mode with explicit restrictions against file modification and has disabled external API calls. No security concerns were identified during installation or in the skill content.

Category Scores

Prompt Injection 95/100 · 30%
Data Exfiltration 100/100 · 25%
Code Execution 100/100 · 20%
Clone Behavior 100/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 95/100 · 5%

Findings (2)

INFO Complex instructional content -5

The skill contains extensive instructional content for Socratic tutoring methodology. While legitimate, the complexity could theoretically be leveraged for unintended purposes.

INFO Verbose interaction pattern -5

The skill is designed to engage in extensive questioning and dialogue, which could become overwhelming for users if not properly controlled.