moai-workflow-tdd
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill contains no executable code, scripts, or binary assets. It serves primarily as a behavioral guideline for the AI agent during software development sessions.
- [SAFE]: The skill's configuration demonstrates best practices by restricting shell command execution to specific, well-known development tools (such as pytest, npm, and cargo), which follows the principle of least privilege.
- [SAFE]: While the skill defines a workflow that ingests external specification documents (a surface for indirect prompt injection), it does not include any instructions to bypass agent safety filters or execute unsanitized content from those specifications.
Audit Metadata