• 1min read Skills on theskills.shnow have automated security audits to help developers use skills with confidence. • Working with our partnersGen,Socket, andSnyk, these independent security reports allow us to rapidly scale and audit over 60,000 skills and counting. • Skills.shprovides greater ecosystem support with: Transparent results: Security audits appear publicly on each skill’s detail page. • Transparent results: Security audits appear publicly on each skill’s detail page. • Leaderboard protection : Skills flagged as malicious are automatically hidden from the leaderboard and search results. • If you navigate directly to a flagged skill, a warning note appears before installation.
Article Summaries:
- Automated Security Audits Launch on Skills.sh
Skills.sh has introduced automated security audits to help developers confidently use its skill marketplace. Partnering with Gen, Socket, and Snyk, the platform now generates independent security reports for over 60,000 skills, scaling audit coverage rapidly. Audits are publicly displayed on each skill’s detail page, and any skill flagged as malicious is automatically removed from the leaderboard and search results, with a warning shown if accessed directly. Starting with the skills@1.4.0 release, users can view audit results and risk levels before installing a skill. More information is available on the Skills.sh website.
Sources: