brand-library-architect
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill defines a visual asset pipeline within a 'justfile' that executes shell commands to render HTML source sheets into WebP images. This includes utilizing Playwright and cwebp for image generation and optimization.
- [EXTERNAL_DOWNLOADS]: The rendering pipeline fetches the Playwright library (a well-known Microsoft tool) via npx and incorporates styles from Google Fonts. These are well-known technology services and are documented neutrally.
- [DATA_EXPOSURE]: Phase 0 (Discovery) performs an automated scan of the project's repository to inventory brand-relevant information such as CSS color tokens and typography configurations. This discovery is limited to the project's local directory and includes a step for the user to confirm all inferred decisions.
- [SAFE]: The skill demonstrates safe practices by ensuring that sensitive files are not accessed and that all repository modifications are transparent and confirmed by the user.
Audit Metadata