Skills
skills/supercent-io/skills-template/bmad-idea/Gen Agent Trust Hub

bmad-idea

Pass

Audited by Gen Agent Trust Hub on Mar 6, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill specifies Bash as an allowed tool, permitting the agent to execute shell commands during its creative processes.
  • [EXTERNAL_DOWNLOADS]: Installation involves downloading a template from the author's GitHub repository (github.com/supercent-io/skills-template) via npx.
  • [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection.
  • Ingestion points: Data provided by the user for ideation, problem-solving, and storytelling tasks.
  • Boundary markers: None identified within the skill's instructions or configuration.
  • Capability inventory: Tools include Bash, Write, Read, Grep, and Glob across all modules.
  • Sanitization: No mechanisms for input validation or content filtering are defined.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 6, 2026, 01:08 PM