cs-feat-accept
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes local development utilities such as git (status, log, diff) and grep to verify the current project state against design requirements. These commands are used for analysis and do not involve elevated privileges.
- [COMMAND_EXECUTION]: It performs file system write operations to update local documentation and project metadata files, such as architecture records, requirements, and roadmap YAML files.
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it ingests and processes untrusted project data including design documents and source code. 1. Ingestion points: {slug}-design.md, {slug}-checklist.yaml, and code via git. 2. Boundary markers: No explicit markers are defined to isolate processed data from the agent's instructions. 3. Capability inventory: The skill has file-write access and can execute local commands. 4. Sanitization: There is no evidence of sanitization or content validation for the data being read.
Audit Metadata