skills/lvlup-sw/exarchos/ideate/Gen Agent Trust Hub

ideate

Pass

Audited by Gen Agent Trust Hub on Jul 7, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No malicious patterns or security vulnerabilities were identified in the skill. The logic follows a structured workflow for software design and documentation.
  • [COMMAND_EXECUTION]: The skill performs a file existence check using test -f on the $SPEC_PATH variable to ensure the design document was successfully saved before attempting to chain to the next workflow step. This is a benign operation used for process validation.
  • [REMOTE_CODE_EXECUTION]: The skill utilizes a Skill() invocation to transition work to the exarchos:plan skill. This is a standard orchestration mechanism within the vendor's own ecosystem and does not involve untrusted remote code.
  • [EXTERNAL_DOWNLOADS]: The skill references templates and references located within its own internal paths (e.g., @skills/plan/references/spec-template.md). It does not fetch content from external or untrusted network locations.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 7, 2026, 06:24 PM
Security Audit — agent-trust-hub — ideate