Skills
skills/williamhallatt/cogworks/cogworks-learn/Gen Agent Trust Hub

cogworks-learn

Pass

Audited by Gen Agent Trust Hub on Mar 30, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill includes shell scripts validate-skill.sh and install-to-agents.sh designed to automate skill verification and deployment within the local environment.
  • [EXTERNAL_DOWNLOADS]: The installation script references the npx skills command, which fetches the skills utility from the official npm registry at runtime.
  • [SAFE]: The skill incorporates robust quality gates and explicitly instructs the agent to treat user-provided design inputs as untrusted, reducing the surface for indirect prompt injection attacks.
  • [SAFE]: Implements disable-model-invocation: true in the frontmatter, a security control that prevents the agent from automatically triggering the skill without manual user intervention.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 30, 2026, 08:32 AM