Skills
skills/asiaostrich/universal-dev-standards/docgen/Gen Agent Trust Hub

docgen

Pass

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Executes local scripts 'scripts/generate-usage-docs.mjs' and './scripts/check-usage-docs-sync.sh' via the Bash tool to perform documentation generation and synchronization checks as documented in the guide.md workflow.
  • [PROMPT_INJECTION]: The skill processes untrusted data from project source files, creating a surface for indirect prompt injection.
  • Ingestion points: Scans various source files (CLI bin, skills/, commands/) using Read, Grep, and Glob tools as defined in SKILL.md.
  • Boundary markers: Absent; the skill does not define delimiters for content extracted from source files when generating documentation output.
  • Capability inventory: Features Bash(*) for script execution and Write for file creation.
  • Sanitization: No evidence of escaping or filtering content extracted from source files before outputting to Markdown.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 9, 2026, 03:58 PM