spec-init
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses shell commands to manage the file system during project setup:
- 'ls' is used to check for the existence of files and directories like 'CLAUDE.md', 'spec/', and '.obsidian/'.
- 'mkdir -p' is used to create the organizational structure, including directories for rules, skills, and documentation specifications.
- [EXTERNAL_DOWNLOADS]: The skill offers an automated installation of its component library using 'npx skills install HHU3637kr/skills'. This command retrieves and installs tools from the author's own infrastructure. Because this is a core initialization function and the resource is linked to the skill author, it is documented as expected behavior without verdict escalation.
Audit Metadata