SR
SKILLRADAR
AI Security • Benchmarking • Index
Menu
Trust Report v1

aes-product-sourcing-advisor

Evaluate potential suppliers and sourcing regions based on cost, quality, lead time, and risk factors.

Overall
85
Trust
92
Utility
70
Momentum
95

Install caution

Safe to read; still review before install

Risk: Low

Source: OpenClaw Master Skills

Path: skills/aes-product-sourcing-advisor/SKILL.md

No high-signal risk patterns found in text-only scan. Still review before installing.

Required permissions

  • No explicit external permissions detected

Permissions are inferred from SKILL.md text only. They are review prompts, not guarantees about runtime behavior.

Risk flags explained

nonelow

No high-signal review flags were found in the SKILL.md text scan.

Score explanation

Trust

  • Trust starts at 90 before review-signal penalties and metadata bonuses.
  • Risk-signal penalty: -0 from 0 detected flag(s).
  • Metadata bonus: +2 from author/version/description fields.

Utility

  • Utility starts at 55 and rewards clear descriptions, runnable examples, and explicit setup needs.
  • Description present: yes.
  • Command examples detected: 0.
  • Environment variables detected: 0.

Momentum

  • Momentum starts at 45 and uses public repo activity signals.
  • Recent commit activity: latest repo update was 6 day(s) ago.
  • Recent commit volume: 6 commit(s) in the lookback window (+18).
  • Source has strong public adoption: 2049 stars.
  • Fork activity suggests reuse: 309 forks.

Overall

  • Overall score weights trust 45%, utility 35%, and momentum 20%.

Detected signals

Env vars

None detected in SKILL.md text scan.

Commands

None detected in SKILL.md text scan.

URLs

None detected in SKILL.md text scan.

Provenance & evidence

SkillRadar makes each review traceable back to the exact source path, source blob SHA, scanner version, and text-only policy that produced the report.

source
github.com/LeoYeAI/openclaw-master-skills@main
path
skills/aes-product-sourcing-advisor/SKILL.md
source blob SHA
55df28042f71644e9a345514ab92990261e1cf35
scanner version
0.3.0
security model
text_only_no_execute_no_install_no_secrets
scan policy
Fetched and scored as text only; no install, no execution, no runtime loading.

Evidence snippets

No review-flag evidence snippets were emitted for this scan.

Watch this skill

Get alerted when this skill adds credential requirements, shell commands, external domains, remote installer patterns, or risk-level changes.

Join watchlist beta

Methodology note

SkillRadar scans SKILL.md as hostile text only. It does not execute commands, install packages, or load third-party skills.

View source SKILL.mdBack to changesView sources