Skills
skills/okwinds/miscellany/bf-caprt-dev/Gen Agent Trust Hub

bf-caprt-dev

Pass

Audited by Gen Agent Trust Hub on Apr 15, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructions and README files include common shell commands for environment preparation, such as pip install, export PYTHONPATH, and mkdir. These are standard development practices intended for the user to configure their local workspace.
  • [EXTERNAL_DOWNLOADS]: The documentation mentions installing the skill via npx openskills from a GitHub repository. This is an installation mechanism for the skill itself rather than a runtime execution of untrusted remote code. The referenced repository is under the author's own namespace.
  • [PROMPT_INJECTION]: The skill contains 'Exit Rules' and 'Three Red Lines' which act as behavioral constraints. These instructions prevent the agent from providing implementation details for unauthorized upstream SDKs, effectively serving as internal scope enforcement rather than a malicious bypass of safety guidelines.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 15, 2026, 08:04 AM
Security Audit — agent-trust-hub — bf-caprt-dev