Skills
skills/lucianghinda/superpowers-ruby/brakeman/Gen Agent Trust Hub

brakeman

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The script scripts/brakeman_helper.rb uses the Ruby system() method to execute the Brakeman command-line interface.
  • Evidence: Multiple instances in scripts/brakeman_helper.rb (e.g., lines 112, 137, 160, 184, 203, 230, and 260) construct shell commands from user-provided arguments and execute them to run security scans.
  • Context: This is the primary intended function of the helper script, acting as a wrapper for the Brakeman static analysis tool.
  • [EXTERNAL_DOWNLOADS]: The documentation provides standard instructions for installing the necessary security tools from trusted sources.
  • Evidence: SKILL.md includes instructions to install the brakeman gem via RubyGems and to pull the official Brakeman Docker image from the maintainer's repository (presidentbeef/brakeman).
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 12:58 PM