behavioral-modes
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill is purely instructional, providing behavioral guidelines and output templates for the AI.
- [DATA_EXPOSURE] (SAFE): No sensitive credentials, hardcoded secrets, or suspicious file paths are present. The use of
Read,Glob, andGreptools is consistent with the stated purpose of analyzing and managing code projects. - [REMOTE_CODE_EXECUTION] (SAFE): No package installations (npm/pip) or remote script downloads (curl/wget) are defined.
- [PROMPT_INJECTION] (LOW): The skill includes behavioral overrides and manual mode triggers (e.g.,
/brainstorm). While these modify AI behavior, they are within the intended operational scope and do not attempt to bypass core safety or ethical guardrails. - [INDIRECT_PROMPT_INJECTION] (LOW):
- Ingestion points: Uses
Read,Glob, andGrepto ingest file content. - Boundary markers: None explicitly defined in the prompts.
- Capability inventory: Capable of writing and modifying code in
IMPLEMENTmode. - Sanitization: Not present. While the skill reads untrusted data, this is a standard risk for development agents and not a malicious feature of this specific skill.
Audit Metadata