brain

Overall, the Brain skill is largely coherent with its stated purpose as a personal knowledge base and retrieval system. The main security consideration is the optional external QMD backend installation via bun from a GitHub URL, which constitutes an unverifiable binary supply-chain risk. If users enable this backend, securityRisk should be elevated accordingly. Otherwise, the footprint remains benign and proportionate to the described functionality.