sefirot-loop
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes
sefirotCLI commands,pip, andgitcommands (merge, add, commit) to manage the development lifecycle. - [EXTERNAL_DOWNLOADS]: Recommends installing the
sefirotlibrary viapip, which is the core dependency for functionality. - [PROMPT_INJECTION]: Surface for indirect prompt injection exists via untrusted data ingestion from
milestones.jsonand design documents (Ingestion points:milestones.json,docs/tasks/; Boundary markers: Specific markdown headers; Capability inventory: Shell and file operations; Sanitization: User review process).
Audit Metadata