Security Audit
PabloLION/bmad-plugin:plugins/bmad/skills/bmad-create-architecture
github.com/PabloLION/bmad-pluginTrust Assessment
PabloLION/bmad-plugin:plugins/bmad/skills/bmad-create-architecture received a trust score of 72/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 1 finding: 1 critical, 0 high, 0 medium, and 0 low severity. Key findings include Prompt Injection via untrusted skill instruction.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on April 11, 2026 (commit 17efb6ce). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Prompt Injection via untrusted skill instruction The `SKILL.md` file, which is explicitly marked as untrusted input, contains a direct instruction (`Follow the instructions in ./workflow.md.`) intended to manipulate the host LLM's execution flow. This is a clear attempt at prompt injection, as untrusted content is dictating the LLM's behavior. Remove direct instructions to the LLM from untrusted skill content. Skill definitions should be declarative descriptions of capabilities, not imperative commands for the LLM to execute. | LLM | SKILL.md:1 |
Scan History
Embed Code
[](https://skillshield.io/report/6928b98ae5e55860)
Powered by SkillShield