open-design

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructions direct the user to clone the nexu-io/open-design repository and install a Claude Code plugin. It also provides an option to install the skill using npx skills add from the author's repository github.com/akillness/jeo-skills. These downloads are part of the intended installation and setup process for the tool.
  • [COMMAND_EXECUTION]: The workflow requires executing several shell commands for installation (git clone, pnpm install) and lifecycle management (pnpm tools-dev subcommands for starting the daemon, opening the web UI, and checking status). Additionally, the skill operates by delegating tasks to locally installed coding agent CLIs like Claude Code and Cursor.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 07:06 AM
Security Audit — agent-trust-hub — open-design