decision-log
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill includes instructions for installation via
npxandgit. These references point to the author's own repository (bjg4/decision-log-skill) and represent expected distribution methods for this type of tool. - [COMMAND_EXECUTION]: Manual installation steps provided in the documentation involve standard file system commands (
mkdir,cp) to initialize the skill directory. - [PROMPT_INJECTION]: The skill possesses a data ingestion surface as it processes conversation history and reads local decision files to generate an index.
- Ingestion points: Reads current conversation content in
SKILL.md(Step 1.4) and existingdecisions/DEC-*.mdfiles (Step 4). - Boundary markers: Uses YAML frontmatter and Markdown headers for structure in
references/templates.md. - Capability inventory: Limited to reading and writing Markdown files in the local
decisions/directory as described inSKILL.md. No network or system-level execution capabilities are present. - Sanitization: Content is extracted into structured templates, providing structural containment.
Audit Metadata