Skills
skills/modu-ai/cc-plugins/moai-docs-generation/Gen Agent Trust Hub

moai-docs-generation

Pass

Audited by Gen Agent Trust Hub on Feb 20, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION] (LOW): Indirect Prompt Injection Surface. The skill is designed to ingest and process data from external SPEC files and source code modules to generate structured documentation. 1. Ingestion points: modules/code-documentation.md (autodoc module scanning), SKILL.md (SPEC file extraction). 2. Boundary markers: No explicit delimiter or instruction-ignore instructions are specified for the agent when processing this untrusted data. 3. Capability inventory: Uses Bash tools for documentation building (Sphinx, MkDocs, TypeDoc). 4. Sanitization: No content sanitization is described.
  • [COMMAND_EXECUTION] (SAFE): The skill uses Bash to execute legitimate documentation CLI tools such as sphinx-build, mkdocs, and typedoc for their intended purposes.
  • [EXTERNAL_DOWNLOADS] (SAFE): The skill provides instructions for installing well-known documentation packages from official registries (npm and PyPI). No suspicious or untrusted sources were identified.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 20, 2026, 04:11 PM