bootstrap
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes standard development commands including 'git init' and various package managers such as 'npm', 'bun', 'pnpm', 'pip', 'uv', and 'cargo' to initialize the codebase and install tools.
- [EXTERNAL_DOWNLOADS]: The skill triggers the download of verified development dependencies and tools (e.g., Biome, Vitest, Ruff) from official package registries during the initialization phase.
- [PROMPT_INJECTION]: The skill exhibits an indirect injection surface:
- Ingestion points: User-provided inputs regarding product definitions, features, and architecture are gathered in Step 2.
- Boundary markers: The instructions do not specify explicit delimiters to isolate user-provided content in the generated documentation.
- Capability inventory: The skill possesses capabilities for file system writes and command execution (package managers).
- Sanitization: There is no mention of sanitizing or escaping user-provided text before it is written to 'README.md' or 'docs/' files.
Audit Metadata