superspec-init
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Command Execution (SAFE): The skill utilizes local commands such as
mkdirandopenspecto set up the development environment. These operations are restricted to the current project directory and align with the skill's stated purpose. - Dependency Analysis (SAFE): The skill requires the
openspecCLI as a precondition. It does not attempt to download or install this dependency at runtime, instead instructing the user to install it manually if missing. - Indirect Prompt Injection (INFO): The skill processes JSON output from the
openspec schema validatecommand. While this represents a surface for tool output poisoning if the project files are malicious, the impact is negligible as the agent is directed to display the information to the user for manual review. Ingestion Point:openspec schema validateJSON output; Boundary Markers: Absent; Capability Inventory:mkdir,openspecCLI; Sanitization: Display to user for manual inspection.
Audit Metadata