Skills
skills/agilebydesign/agile-context-engine/agile-skill-build/Gen Agent Trust Hub

agile-skill-build

Pass

Audited by Gen Agent Trust Hub on Mar 3, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides two Python scripts (scripts/scaffold.py and scripts/build.py) intended for local execution to automate development tasks.
  • [FILE_SYSTEM_OPERATIONS]: The scripts interact with the local file system to create directory structures and aggregate content from markdown files into an AGENTS.md file.
  • [DYNAMIC_PATH_CONFIGURATION]: Both scripts dynamically modify the Python sys.path to include the project root, enabling imports from the vendor's local engine (src.engine).
  • [INDIRECT_PROMPT_INJECTION]: The scaffold.py script accepts user-provided input via the --name and --path arguments, and build.py processes external markdown content. While this represents a data ingestion surface, the implementation serves the skill's primary purpose as a build tool without malicious intent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 3, 2026, 11:25 PM