Exec Security

The skill's declared purpose (pre-execution scanning of shell commands) matches its instructions and requested footprint: it is an instruction-only policy for detecting dangerous shell patterns, with no installs or credential requests.

This skill is internally coherent for its stated purpose and lower-risk because it's instruction-only and requests no installs or secrets. Before installing, verify the runtime implementation: confirm it will only analyze command text (not read secret environment variables or secret files), confirm how it prompts users (so prompts aren't sent to external endpoints), and limit the skill's autonomy if you don't want it invoked without explicit approval. If possible, run the checker in a safe/test environment first and ask for or review the code that will perform ownership checks and Unicode inspections to ensure no accidental exposure of secrets or file contents.