spec-diff-pipeline
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill is a standard developer utility for change management and design analysis. Its activities are confined to reading files and generating documentation within the local workspace. No unauthorized network operations, credential exposures, or remote code execution patterns were detected.
- [PROMPT_INJECTION]: The skill processes untrusted specification files and git diff outputs, creating a surface for indirect prompt injection. This is evaluated as safe because the skill's actions are restricted to producing markdown reports and it does not execute the content of the processed files.
- Ingestion points: Specification files and git diff command output.
- Boundary markers: No explicit delimiters or instructions to ignore embedded instructions are used.
- Capability inventory: File system read/write and git diff execution.
- Sanitization: No input validation or sanitization is performed on the specification content.
Audit Metadata