Skills
skills/team-attention/hoyeon/scaffold/Gen Agent Trust Hub

scaffold

Pass

Audited by Gen Agent Trust Hub on Apr 8, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute system discovery commands (e.g., 'ls -la', 'node -v', 'git status', 'uname -a') to identify the development environment and tooling availability.
  • [COMMAND_EXECUTION]: It interacts extensively with a vendor-specific CLI tool ('hoyeon-cli') for project initialization, metadata merging, and specification validation.
  • [COMMAND_EXECUTION]: The skill automates the creation of '.claude/settings.json', which defines platform-level hooks ('PostToolUse' and 'PreToolUse'). These hooks are configured to execute shell commands like code formatters (e.g., 'prettier', 'eslint', 'ruff') or security checks automatically when files are modified.
  • [COMMAND_EXECUTION]: Dynamically generates new 'SKILL.md' files (Domain Skills) that contain instructions and project-specific shell commands for repeatable tasks such as migrations or deployments.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 8, 2026, 11:01 AM