Description
The SkillSpector CLI exits 1 when a skill's aggregate risk score is HIGH/CRITICAL (score > 50) and 2 on error. We don't gate on the aggregate score, because a pile of MEDIUM findings can push the aggregate to HIGH even when no single finding is HIGH/CRITICAL. Instead we fail only when an individual finding is HIGH or CRITICAL (and always fail on error).
That said, this strategy may make our skills fail in other security scans.
To better prepare our skills for 3rd party scans, we should resolve medium/small security issues and adopt SkillSpector's default pass/fail strategy.
Description
The SkillSpector CLI exits 1 when a skill's aggregate risk score is HIGH/CRITICAL (score > 50) and 2 on error. We don't gate on the aggregate score, because a pile of MEDIUM findings can push the aggregate to HIGH even when no single finding is HIGH/CRITICAL. Instead we fail only when an individual finding is HIGH or CRITICAL (and always fail on error).
That said, this strategy may make our skills fail in other security scans.
To better prepare our skills for 3rd party scans, we should resolve medium/small security issues and adopt SkillSpector's default pass/fail strategy.