takt-piece
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is to generate and validate workflow YAML files and Markdown facets. It operates within the user's local directory (~/.takt/) and reference directories provided with the environment.
- [COMMAND_EXECUTION]: The skill provides a validation script at
scripts/validate-takt-files.sh. This script is used to ensure the integrity of the generated configurations. It executes localpython3andrubycommands using heredocs to perform path normalization and YAML structure validation without external dependencies. - [COMMAND_EXECUTION]: Analysis of the validation script confirms that it uses secure practices for passing arguments (e.g., using
sys.argvin Python andARGVin Ruby) to prevent common injection vulnerabilities.
Audit Metadata