spec-kit-constitution
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- NO_CODE (SAFE): The skill consists entirely of markdown instructions and templates. No scripts, binaries, or executable code are included.\n- PROMPT_INJECTION (LOW): The skill exhibits a surface for indirect prompt injection as it interpolates user input and existing repository content into templates without explicit sanitization or boundary markers.\n
- Ingestion points:
memory/constitution.md, user input.\n - Boundary markers: Absent in the workflow instructions.\n
- Capability inventory: File-write access to documentation directories.\n
- Sanitization: None identified in the provided instructions.\n- DATA_EXFILTRATION (SAFE): No network operations or access to sensitive files like credentials or SSH keys were detected.\n- COMMAND_EXECUTION (SAFE): The skill does not execute system commands or spawn subprocesses.
Audit Metadata