docpact-governance
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or data exfiltration vectors were detected in the skill files.
- [COMMAND_EXECUTION]: The skill instructs the agent to run the 'docpact' CLI locally (e.g., 'doctor', 'coverage', 'list-rules') to gather diagnostic data about the repository's governance state. These commands are used solely for analysis within the local environment.
- [EXTERNAL_DOWNLOADS]: The documentation references the official 'docpact' GitHub Action wrapper for CI integration, but it does not execute remote code or download untrusted scripts during runtime.
Audit Metadata