opc-asset-ops
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: No prompt injection or obfuscation techniques were identified in the instructions or metadata.
- [COMMAND_EXECUTION]: The skill utilizes a file-writing tool to persist assets and state information to the
opc-doc/directory on the local filesystem. This activity is restricted to the project scope and requires user confirmation for the content. - [SAFE]: The skill does not perform any network operations, external downloads, or remote code execution.
- [SAFE]: Indirect Prompt Injection Surface Analysis: Ingestion points: Reads project state from
opc-doc/outputs/06-mvp-design/*and07-conversion-loop/*. Boundary markers: Absent; the skill treats file content as project data to be categorized. Capability inventory: Able to write files toopc-doc/outputs/08-asset-ops/and updateopc-doc/state/files. Sanitization: Absent; the skill analyzes provided text for categorization and planning. This surface is used for intended workflow state management.
Audit Metadata