Skills
skills/mingyuepop/specforge/project-dev-standards/Gen Agent Trust Hub

project-dev-standards

Pass

Audited by Gen Agent Trust Hub on Mar 22, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill's primary function is to read local documentation and generate a development guide, which is a standard and safe operation.- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection as it processes data from external specification documents.
  • Ingestion points: Content is read from files including specs/2_技术栈.md, specs/1_产品概述.md, and specs/7_AI错题本.md.
  • Boundary markers: Absent; there are no delimiters or instructions provided to the agent to ignore instructions found within these files.
  • Capability inventory: In SKILL.md, the agent is instructed to read files in the specs/ directory and write output to specs/4_开发规范.md.
  • Sanitization: Absent; no validation or filtering is applied to the ingested data before it is incorporated into the agent's context.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 22, 2026, 04:57 AM