blueprint-work-order
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the bash tool to execute git, gh (GitHub CLI), and jq for project state management. These operations are localized to the repository and are consistent with the skill's stated purpose.
- [DATA_EXFILTRATION]: Project task metadata is sent to GitHub via the gh CLI to create or update issues. This represents intended functionality for collaboration and targets a well-known service without accessing sensitive system credentials or private keys.
- [PROMPT_INJECTION]: The skill processes content from GitHub issues and local documentation to populate work-orders. Ingestion points: docs/prps/*.md, gh issue view output, and local PRD files. Boundary markers: No explicit delimiters are used in the instructions to separate untrusted data. Capability inventory: bash (for git/gh/jq operations), Write (for saving work-orders and updating manifest files). Sanitization: The skill does not explicitly sanitize or escape content fetched from external sources before interpolating it into the generated markdown files.
Audit Metadata