kata-pause-work
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): Uses standard Unix utilities (bash, grep, find) and git to locate project directories and commit progress. These actions are consistent with the skill's described purpose.
- [DATA_EXFILTRATION] (SAFE): No network activity or external data transmission was detected. Operations are confined to the local project environment.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill reads phase information from .planning/STATE.md. The implementation uses a strict numeric regex ([0-9]+) which effectively sanitizes the input and prevents command injection attacks via the parsed variable.
- [UNVERIFIABLE_DEPENDENCIES] (LOW): References a local configuration script (../kata-configure-settings/scripts/read-config.sh). While this dependency is local, the skill's execution flow depends on the presence and integrity of this external script.
Audit Metadata