writing-skills
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The utility script
render-graphs.jsusesexecSyncto run the systemdotcommand from Graphviz. This script is provided as a local tool for developers to visualize process flows defined in Markdown files. - [EXTERNAL_DOWNLOADS]: The skill documentation mentions several third-party libraries (e.g.,
pdfplumber,docx-js,pypdf) as examples and recommendations for skill authors, but it does not perform any automated downloads or installations. - [PROMPT_INJECTION]: The skill includes guidance on using imperative language and psychological principles (such as 'Authority' and 'Commitment') to ensure agents follow rules. These are presented as educational strategies for designing effective documentation and do not constitute malicious injection attacks or bypasses.
Audit Metadata