devdocs-requirements
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues or malicious patterns were detected. The skill is instructional and follows development best practices.
- [EXTERNAL_DOWNLOADS]: The skill uses the WebFetch tool to retrieve content from user-provided URLs to extract summaries for the Background Information section. This is a legitimate functional requirement for gathering project context and is used to process external information into documentation.
- [PROMPT_INJECTION]: While the skill processes external data from URLs and files, it includes specific negative constraints to prevent including sensitive information like API keys, credentials, or internal URLs in its output, effectively mitigating common data leakage risks.
- [NO_CODE]: The skill does not include or install any external scripts, binaries, or package dependencies, relying entirely on prompt-based logic and established agent tools.
Audit Metadata