openspec-bulk-archive-change
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes the 'openspec' CLI and standard filesystem utilities ('mkdir', 'mv') to organize change artifacts. These commands are limited to local project directories and align with the skill's documented functionality.\n- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface when resolving conflicts by reading external data.\n
- Ingestion points: Reads task lists ('tasks.md') and implementation code from the local filesystem.\n
- Boundary markers: None identified.\n
- Capability inventory: Restricted to local file management and 'openspec' CLI usage. No network or privilege escalation capabilities were found.\n
- Sanitization: No specific sanitization of the read content is described.
Audit Metadata