speckit-specify

The Speckit Specify skill’s footprint is coherent with its stated purpose: it generates feature specifications from natural language input, creates branch names, writes SPEC.md files, and produces a quality checklist, all within a local/project-context workflow. There are no credential requirements, no external data exfiltration, and no run-time downloads of unverified binaries. The risk profile is Benign with low-security concerns. Minor risks pertain to error handling around the external script invocation, but these do not imply security compromise. Overall, this skill is proportionate to its purpose and presents minimal security risk.