Skills
skills/bmad-code-org/bmad-builder/bmad-agent-diagram-reviewer/Gen Agent Trust Hub

bmad-agent-diagram-reviewer

Pass

Audited by Gen Agent Trust Hub on Apr 13, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill consists of instructional markdown files providing behavioral guidelines for diagram analysis. No executable scripts or binary files are included.
  • [DATA_EXPOSURE]: The skill instructions specify loading configuration from {project-root}/_bmad/config.yaml and {project-root}/_bmad/config.user.yaml. These paths are within the skill's own configuration directory and do not target sensitive system or user files.
  • [INDIRECT_PROMPT_INJECTION]: The skill is designed to ingest and analyze user-provided diagrams. While diagrams may contain text, the skill's instructions focus on structural and logical analysis. It lacks capabilities to perform dangerous actions (like network calls or file writes) based on the input data, minimizing injection risks.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 13, 2026, 11:24 AM
Security Audit — agent-trust-hub — bmad-agent-diagram-reviewer