Security audit
Replicate
Security checks across malware telemetry and agentic risk
Overview
The skill appears to be a Replicate integration with purpose-aligned read and write behavior, with no supplied malware or deception signals.
Before installing, users should confirm they intend to use this skill for Replicate API work and should review any write, cancel, update, or cost-incurring operation before approving it. I could not complete direct workspace inspection because the local command sandbox failed before shell startup, so this verdict relies on the supplied scanner and telemetry context.
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
