brain
Pass
Audited by Gen Agent Trust Hub on Mar 22, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill focuses entirely on managing local markdown files within the brain/ directory for documentation and planning. It does not attempt to access sensitive system files, hardcode credentials, or perform network operations.
- [PROMPT_INJECTION]: The skill identifies an ingestion surface where data from the brain/ directory enters the agent's context (SKILL.md). While explicit boundary markers and sanitization logic for note content are absent, the risk is negligible as the skill lacks dangerous capabilities such as remote code execution or network exfiltration.
Audit Metadata