Skills
skills/catlog22/maestro-flow/maestro-phase-add/Gen Agent Trust Hub

maestro-phase-add

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill relies on shell commands (Bash) to list directories, create folders, and renumber existing phase directories using a reverse-order loop.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes user-supplied phase names and stores them in project files that may be read by other agents.
  • Ingestion points: User-provided phase name argument in SKILL.md.
  • Boundary markers: None defined in the target files (roadmap.md, index.json).
  • Capability inventory: File writes via Write and Edit tools, directory creation, and shell command execution.
  • Sanitization: Instructions specify slug normalization (lowercase, stripping special characters), but the full title is stored without sanitization.
  • [DATA_EXPOSURE]: The skill reads a template file from the user's home directory at ~/.maestro/templates/index.json. While this is an application-specific configuration path, it involves accessing data outside the immediate project scope.
  • [DYNAMIC_EXECUTION]: The skill generates dynamic shell logic at runtime to perform directory renames based on calculated phase indices and user-provided slugs.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 01:12 AM