dev-workflow
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill defines a structured development process using local file tools (Read, Write, Grep, Glob) and does not perform any high-risk operations.
- [INDIRECT_PROMPT_INJECTION]: The skill processes project documentation and history files. While this creates a surface for indirect prompt injection if those files contain malicious instructions, the skill does not have network access or administrative capabilities that could be exploited to exfiltrate data or compromise the system.
Audit Metadata