insecure-design
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill defines a structured workflow for performing security design reviews, incorporating STRIDE mapping and architectural reasoning.\n- [COMMAND_EXECUTION]: The skill incorporates semgrep for automated security pattern detection, which is a well-known and safe static analysis utility used as intended for security auditing.\n- [SAFE]: No evidence of malicious patterns, including prompt injection, data exfiltration, or obfuscation, was detected in the skill logic or its reference patterns. All operations are local and follow established security practices.
Audit Metadata