Skills
skills/borghei/claude-skills/create-prd/Gen Agent Trust Hub

create-prd

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses a local script scripts/prd_scaffolder.py to generate markdown scaffolding.
  • Execution Method: The agent calls the script via a subprocess to process CLI arguments.
  • Logic: The script uses argparse for input handling and textwrap for template generation.
  • Risk Assessment: The script does not use dangerous functions like eval() or os.system(). It performs simple string interpolation into a static template and writes the result to a specified file path. This is a standard and safe use of a helper script within a skill context.
  • [DATA_EXPOSURE]: No hardcoded credentials, API keys, or access to sensitive system paths (e.g., SSH keys, environment files) were found in the skill body or the associated Python script.
  • [EXTERNAL_DOWNLOADS]: The skill does not perform any network requests or download any external resources. It relies entirely on the local files provided in the skill package.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 02:30 AM