SR
SKILLRADAR
AI Security • Benchmarking • Index
Menu
Trust Report v1

canvas-design

Create beautiful visual art in .png and .pdf documents using design philosophy. You should use this skill when the user asks to create a poster, piece of art, design, or other static piece. Create original visual designs, never copying existing artists' work to avoid copyright vi

Overall
77
Trust
77
Utility
70
Momentum
88

Install caution

Needs manual review

Risk: Low

Source: Anthropic Skills

Path: skills/canvas-design/SKILL.md

Review flags: filesystem/home-directory access. These are review signals, not definitive security judgments; inspect before installing.

Required permissions

  • Filesystem/home access

Permissions are inferred from SKILL.md text only. They are review prompts, not guarantees about runtime behavior.

Risk flags explained

filesystem_write_or_home_accessmedium

Mentions filesystem writes, deletes, home-directory paths, or config/key locations.

Score explanation

Trust

  • Trust starts at 90 before review-signal penalties and metadata bonuses.
  • Risk-signal penalty: -15 from 1 detected flag(s).
  • Metadata bonus: +2 from author/version/description fields.

Utility

  • Utility starts at 55 and rewards clear descriptions, runnable examples, and explicit setup needs.
  • Description present: yes.
  • Command examples detected: 0.
  • Environment variables detected: 0.

Momentum

  • Momentum starts at 45 and uses public repo activity signals.
  • Recent repo update within 11 days.
  • Recent commit volume: 5 commit(s) in the lookback window (+15).
  • Source has strong public adoption: 153438 stars.
  • Fork activity suggests reuse: 18085 forks.

Overall

  • Overall score weights trust 45%, utility 35%, and momentum 20%.

Detected signals

Env vars

None detected in SKILL.md text scan.

Commands

None detected in SKILL.md text scan.

URLs

None detected in SKILL.md text scan.

Provenance & evidence

SkillRadar makes each review traceable back to the exact source path, source blob SHA, scanner version, and text-only policy that produced the report.

source
github.com/anthropics/skills@main
path
skills/canvas-design/SKILL.md
source blob SHA
9f63fee82de84cd4230e1d0e322247b61eb4c94c
scanner version
0.3.0
security model
text_only_no_execute_no_install_no_secrets
scan policy
Fetched and scored as text only; no install, no execution, no runtime loading.

Evidence snippets

filesystem_write_or_home_access

…ting artifacts that are 90% visual design, 10% essential text. Consider this approach: - Write a manifesto for an art movement - The next phase involves making the artwork The philoso…

Watch this skill

Get alerted when this skill adds credential requirements, shell commands, external domains, remote installer patterns, or risk-level changes.

Join watchlist beta

Methodology note

SkillRadar scans SKILL.md as hostile text only. It does not execute commands, install packages, or load third-party skills.

View source SKILL.mdBack to changesView sources