Skills
skills/hebertpaziam/skills/openspec-apply-change/Gen Agent Trust Hub

openspec-apply-change

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill integrates with the openspec CLI, a project-specific tool for managing development workflows. It performs standard operations like listing changes, checking status, and reading local project files.
  • [COMMAND_EXECUTION]: The skill executes shell commands using the openspec CLI (e.g., openspec list --json, openspec status --change "<name>" --json). These commands are limited to the specific tool's functionality and do not involve arbitrary shell execution or dangerous parameters.
  • [DATA_EXPOSURE_AND_EXFILTRATION]: The skill reads local context files identified by the CLI. This is standard behavior for a development assistant and there is no evidence of data being transmitted to external servers.
  • [PROMPT_INJECTION]: No malicious prompt injection patterns or attempts to override system safety guidelines were found. The instructions are focused on task implementation and status reporting.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 07:49 PM