openspec-onboard
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is entirely instructional and does not include any executable scripts or binary files.
- [PROMPT_INJECTION]: Analysis of the skill instructions found no attempts to bypass safety filters or override system constraints.
- [DATA_EXFILTRATION]: No sensitive file access or network communication patterns were identified.
- [EXTERNAL_DOWNLOADS]: The skill references a GitHub documentation URL. As GitHub is a well-known service, this is documented as a safe reference for informational purposes.
- [REMOTE_CODE_EXECUTION]: No patterns for downloading and executing remote code or installing external packages were detected.
Audit Metadata