spec-builder
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill functions as a structured guide for document generation and does not perform any dangerous actions like unauthorized file access or network communication.
- [NO_CODE]: The skill consists entirely of markdown instructions within the SKILL.md file and does not include any Python scripts, Node.js packages, or binary executables.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface because it processes untrusted user input to generate specifications. 1. Ingestion points: User responses during the initial context and interview phases. 2. Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present. 3. Capability inventory: Writing the resulting specification to a local markdown file. 4. Sanitization: No explicit sanitization of user-provided text or filenames is described. This surface is considered safe given the skill's primary purpose and the limited impact of generating text documents.
Audit Metadata