bmad-tea
Pass
Audited by Gen Agent Trust Hub on Apr 26, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Upon activation, the skill directs the agent to execute a framework-specific Python script (
resolve_customization.py) located in the project's internal directory. This is a standard configuration step for the BMad framework and is restricted to the project root. - [DATA_EXPOSURE]: The skill loads project-specific context files (e.g.,
project-context.md) and configuration YAML into the agent's persistent memory. This is fundamental to its role as a Test Architect to ensure recommendations are project-aware. - [EXTERNAL_DOWNLOADS]: The documentation fragments within the skill reference established testing libraries and tools (Playwright, Cypress, Pact, k6). The examples provided are instructional and align with modern quality assurance best practices.
- [PROMPT_INJECTION]: The skill uses standard persona-adoption instructions to establish the 'Murat' identity. No patterns attempting to bypass safety filters or override core agent behavior were detected.
Audit Metadata