Passgen

The name/description align with the included script: generate/pin/phrase/check are implemented. Minor mismatch: the runtime implementation invokes python3, but the skill metadata declares no required binaries. Also SKILL.md lists version 1.0.0 while registry shows 1.0.2.

The runtime script executes embedded python via python3 -c with direct interpolation of shell variables into the python code. In cmd_check the password is embedded as pw='$pw' inside a double-quoted python command — a password containing single quotes, newlines, or other special characters can break quoting and enable code injection or unexpected behavior. Similarly, numeric parameters ($len, $count, $words) are interpolated without validation, which could cause errors or unexpected code execution if non-numeric input is passed. The SKILL.md instructions themselves are scoped to password generation, but the implementation's unsafe interpolation is a vulnerability.

No install spec and no external downloads — instruction-only plus a small shell script. This minimizes installation risk.

The skill requests no environment variables, credentials, or config paths — consistent with a local password generator.

always is false and the skill does not request elevated/persistent privileges or modify other skills' configs.