openspec-verify-change
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes the openspec CLI to manage and retrieve project state. These commands are localized to the user's environment and are used to provide structured data for the verification report.
- [PROMPT_INJECTION]: Analysis of the skill's instructions shows no attempts to override safety filters or coerce the agent into unauthorized actions.
- [DATA_EXFILTRATION]: The skill processes internal project documentation and source code for the purpose of generating a local verification report. No mechanisms for transmitting sensitive information to external endpoints were identified.
Audit Metadata