brainstorming
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill facilitates brainstorming through a structured Socratic Q&A process and document management. No malicious patterns such as exfiltration, obfuscation, or unauthorized command execution were detected.
- [DATA_EXPOSURE]: The skill accesses a local file
~/.agentic-learnings.jsonto incorporate historical context into the brainstorming session. This is an intended feature for personalization and is consistent with the vendor's provided sub-skills. - [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted user input and historical learning data, which creates a surface for indirect prompt injection.
- Ingestion points: User responses collected via the
AskUserQuestiontool and prior insights retrieved from~/.agentic-learnings.json. - Boundary markers: The instructions do not specify explicit delimiters or boundary markers when interpolating this data into the brainstorming document or prompts.
- Capability inventory: The skill has the ability to write markdown files to the
thoughts/directory and recommend the execution of subsequent commands such as/researchand/create-plan. - Sanitization: There is no mention of explicit sanitization or validation of the external content before it is added to the document.
Audit Metadata