gaia-submission
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill uses
npxto download and execute the@claude-flow/clipackage from the npm registry. This is used for session memory management and post-task hooks. - [COMMAND_EXECUTION]: Executes shell commands to validate the environment, run the GAIA benchmark suite (
/gaia), and interact with local results files located in~/.cache/ruflo/. - [COMMAND_EXECUTION]: Invokes a local Node.js script via
node v3/@claude-flow/cli/bin/cli.jsto verify the CLI build version. - [DATA_EXFILTRATION]: Uses a memory storage tool to persist benchmark summaries and discovered patterns. This behavior is transparent and serves the stated purpose of history tracking and leaderboard comparison.
Audit Metadata