plan-release-cycle
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill functions as a documentation generator and does not perform any high-risk operations. It uses standard file management tools to create project artifacts.\n- [EXTERNAL_DOWNLOADS]: The skill references well-known technology services (npm, r-universe.dev) in its documentation templates. These references are for the user's information and do not involve the agent downloading or executing remote code.\n- [PROMPT_INJECTION]: The skill's surface for indirect prompt injection was reviewed. Ingestion points include the 'Inputs' section (features and versions) which are written to 'RELEASE-PLAN.md' using the 'Write' tool. While no sanitization or boundary markers are present, the lack of executable tools for the agent ensures this remains a low-risk documentation activity.
Audit Metadata