openspec-onboard

The OpenSpec onboarding skill appears to be a benign, classroom-style workflow guide intended to teach users how to perform a complete OpenSpec change lifecycle within their own codebase. It relies on locally installed OpenSpec CLI and repository operations, with no exposure of credentials, no untrusted downloads, and no network exfiltration described. Overall, the footprint is coherent with its stated purpose and proportionate to a learning scenario. Some small enhancements (explicitly stating reliance on official OpenSpec distribution channels and clarifying that no credential files will be read) could strengthen trust, but the current design does not raise security concerns.