SECURITY REVIEW PROCESS

docx

Use this skill whenever the user wants to create, read, edit, or manipulate Word documents (.docx files). Triggers include: any mention of 'Word doc', 'word document', '.docx', or requests to produce professional documents with formatting like tables of contents, headings, page numbers, or letterhea

$ skillvault review docx

→ Fetching SKILL.md from https://github.com/anthropics/skills...

→ Running Stage 1 automated scan...

✓ Stage 1 PASSED — Risk score: 0/100

✓ Stage 2 PASSED — Human review complete

✓ Stage 3 PASSED — Sandbox execution clean

✓ Skill signed and published to registry

✅

Stage 01

Automated Scan

Checked prompt injection, IoC matches, credential paths, shell commands, network calls. Score: 0/100

✅

Stage 02

Human Review

Automated review. Risk: very_low. Score: 0/100.

✅

Stage 03

Sandbox Execution

Skill executed in isolated container. Network traffic and file access logged. Zero deviations from declared behavior.

✅

Stage 04

Cryptographic Signing

SHA-256 hash of skill directory signed via Sigstore keyless signing. Logged in public transparency log.

Full Scan Findings

Prompt injectionCLEAN

Known IoC matchesNONE

Network calls1 DECLARED

Credential pathsNONE

Shell commandsNONE

Social engineering0/100

Final verdictAPPROVED

View Security Report Card →