compliance-checker
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes shell commands via
make(e.g.,make validate-skill-design) to execute a local validation script (scripts/validate_skill_design.py). These commands are used solely for the skill's primary purpose of repository maintenance. - [INDIRECT_PROMPT_INJECTION]: The skill processes other files within the repository as part of its validation workflow, creating a potential surface for indirect prompt injection.
- Ingestion points: Reads various skill files and documentation (
SKILL.md,SKILL_DESIGN_PRINCIPLES.md) within the repository. - Boundary markers: Not explicitly specified in the instructions.
- Capability inventory: Execution of
makecommands and Python scripts. - Sanitization: No specific sanitization or content escaping is described for the validation process.
Audit Metadata