senior-brainstorm
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or data exfiltration attempts were detected. The skill primarily consists of architectural guidance and templates.
- [EXTERNAL_DOWNLOADS]: The skill's documentation provides a standard installation command using
git clonefrom the author's public GitHub repository (github.com/qwwiwi/senior-brainstorm-skill). This is a legitimate vendor resource used for installation and does not execute remote code during skill runtime. - [COMMAND_EXECUTION]: The skill mentions various CLI tools and development commands (e.g.,
npm audit,k6,git) as recommendations for the developer's workflow. It does not instruct the agent to execute dangerous commands on the host system. - [CREDENTIALS_UNSAFE]: References to secrets management (e.g.,
.env,~/.ssh/id_rsa) are used exclusively in an educational context to teach users how to secure their own applications; no actual credentials or instructions to harvest them are present.
Audit Metadata