CtrlK
BlogDocsLog inGet started
Tessl Logo

android-security

Secure data encryption, network configuration, and permissions in Android apps. Use when handling API keys, auth tokens, certificate pinning, EncryptedSharedPreferences, or securing exported components.

78

Quality

Does it follow best practices?

Impact

No eval scenarios have been run

SecuritybySnyk

Passed

No known issues

SKILL.md
Quality
Evals
Security

Quality

Content

100%

Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.

A well-structured, concise standards skill: concrete API-level directives inline with executable examples offloaded to a single one-level-deep reference file, organized into clear categories.

DimensionReasoningScore

Conciseness

The body is a lean bullet checklist with no filler, no explanation of basic Android/security concepts, and every line carries a concrete directive, matching the lean-and-efficient anchor.

3 / 3

Actionability

Directives name specific APIs and attributes ("EncryptedSharedPreferences", "android:exported=\"false\"", "cleartextTrafficPermitted=\"false\"", "Uri.Builder or HttpUrl (OkHttp)", "Play Integrity API"), and executable code lives in references/implementation.md, so guidance is concrete and copy-paste oriented.

3 / 3

Workflow Clarity

This is a standards/checklist skill rather than a multi-step destructive workflow, and content is clearly organized into Data Storage, Network, Component Export, and Anti-Patterns sections with unambiguous directives, which per the simple-skill note scores 3.

3 / 3

Progressive Disclosure

The References section points one level deep to the verified bundle file references/implementation.md (which contains the executable Kotlin/XML examples), keeping the overview lean while signaling where details live.

3 / 3

Total

12

/

12

Passed

Description

100%

Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.

A strong description: concise, third-person, with an explicit "Use when" clause and concrete Android-specific trigger terms covering what the skill does and when to invoke it.

DimensionReasoningScore

Specificity

"Secure data encryption, network configuration, and permissions in Android apps" names multiple concrete security domains (encryption, network config, permissions) specific to Android, matching the multiple-specific-actions anchor rather than the single-domain anchor at 2.

3 / 3

Completeness

It states what ("Secure data encryption, network configuration, and permissions in Android apps") and an explicit when ("Use when handling API keys, auth tokens, certificate pinning, EncryptedSharedPreferences, or securing exported components"), satisfying the both-what-and-when anchor.

3 / 3

Trigger Term Quality

"API keys, auth tokens, certificate pinning, EncryptedSharedPreferences, ... securing exported components" are natural terms a developer would actually say, giving good coverage rather than the partial coverage at 2.

3 / 3

Distinctiveness Conflict Risk

The Android-specific niche and triggers like EncryptedSharedPreferences and certificate pinning make it unlikely to fire for unrelated skills, matching the clear-niche anchor.

3 / 3

Total

12

/

12

Passed

Validation

87%

Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.

Validation14 / 16 Passed

Validation for skill structure

CriteriaDescriptionResult

metadata_version

'metadata.version' is missing

Warning

metadata_field

'metadata' should map string keys to string values

Warning

Total

14

/

16

Passed

Repository
HoangNguyen0403/agent-skills-standard
Reviewed

Table of Contents

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.