docs-management
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches documentation content from official Anthropic domains including
docs.claude.com,code.claude.com, andanthropic.com. These are well-known service domains directly related to the skill's primary function of documentation management. - [COMMAND_EXECUTION]: The skill includes scripts that execute
pip installto manage its own dependencies (e.g.,pyyaml,requests,beautifulsoup4). This behavior is documented and occurs during setup or as a check before running core operations. - [PROMPT_INJECTION]: The
SKILL.mdfile contains various operational instructions using labels like 'MANDATORY' and 'CRITICAL'. These instructions are defensive in nature, guiding the agent to avoid common pitfalls such as path resolution errors in PowerShell or token limit issues with large files. They do not attempt to bypass safety filters or override agent constraints in a malicious way. - [SAFE]: The skill demonstrates high technical maturity with clear separation of concerns, robust logging, and an extensive suite of unit and integration tests covering its utility modules.
Audit Metadata