> For the complete documentation index, see [llms.txt](https://docs.veedna.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.veedna.com/unifai/ai-asset-inventory-ai-bom/skills.md).

# Skills

UnifAI continuously monitors AI skills marketplaces to assess trust and safety, giving developers and coding agents verified, policy-backed confidence in every skill they incorporate into their agentic applications.

### UnifAI and Skills

As developers build agentic AI applications using coding assistants and low-code platforms, they increasingly pull in *skills* — third-party action modules that extend what an AI agent can do at runtime. These skills can interact with sensitive data, invoke external APIs, and run inside autonomous agent workflows, introducing risks that legacy security tools were not designed to detect.

UnifAI addresses this by running continuous assessment across major skills marketplaces. Every skill is scanned and classified for trust, then surfaced in your AI BOM with a clear allowed or blocked status. Out-of-the-box policies let teams enforce governance without writing rules from scratch.

<div align="left" data-with-frame="true"><figure><img src="/files/QE90DJaYg7ZtBeFQb70I" alt="" width="563"><figcaption></figcaption></figure></div>

Skills are one asset type within the broader UnifAI AI BOM. When UnifAI's Discovery Agents detect that a skill is referenced in your project, for example, through a coding assistant, an MCP server, or an agentic platform, it is automatically catalogued, classified, and surfaced in the AI Asset Inventory alongside models, agents, and LLM dependencies.

From there, UnifAI's policy orchestration layer determines whether the skill is allowed or blocked based on your active policies and applies guardrails at build time before your agents reach production.

### Monitored marketplaces

UnifAI has scanned over 53,000 skills across four major marketplaces, identifying hundreds of suspicious and confirmed malicious skills that would otherwise be invisible to standard supply chain tooling. UnifAI continuously monitors the following skills marketplaces:

* `agentskill.sh`
* `skillsmp.com`
* `clawhub.ai`
* `skills.sh`

Coverage expands as new marketplaces emerge in the agentic AI ecosystem.

### Trust classifications

UnifAI assigns every skill one of three trust classifications based on static analysis, behavioral signals, and threat intelligence from Lineaje AI Research Labs:

**Benign**: No indicators of malicious behavior, unsafe data handling, or policy violations. Safe to use subject to your organization's governance policies.

**Suspicious**: Exhibits ambiguous signals, such as unusual permission scopes, opaque data flows, or patterns consistent with known threats. Flagged for review before use.

**Malicious**: Confirmed harmful behavior such as prompt injection, data exfiltration, or credential harvesting. Malicious skills are further classified into key AI threat categories.

<div align="left" data-with-frame="true"><figure><img src="/files/GFV49DKYXl7siaCqv9BW" alt="" width="563"><figcaption></figcaption></figure></div>

### Out-of-the-box UnifAI Policies

UnifAI derives and applies governance policies automatically. No manual rule authoring required. For skills, three policies are available immediately on setup:

* **Do not allow use of malicious skills**: Prevents any confirmed malicious skill from being loaded or invoked within an agentic workflow.
* **Do not allow use of suspicious skills**: Quarantines suspicious skills and requires explicit approval before they can be used in any application.
* **Do not allow use of unknown skills**: Prevents any unknown skill from being loaded or invoked within an agentic workflow.
* **Do not allow skills that exfiltrate data**: Blocks skills identified as transmitting user or application data to unauthorized external endpoints.


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://docs.veedna.com/unifai/ai-asset-inventory-ai-bom/skills.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.