specify-requirements
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill instructions define functional boundaries and template adherence. No instructions were found that attempt to bypass safety filters, extract system prompts, or override agent constraints.\n- [DATA_EXFILTRATION]: The skill uses localized file system tools (Read, Write, Edit, Grep, Glob) for managing documentation within the 'docs/specs/' directory. There are no hardcoded credentials, sensitive file path accesses (e.g., SSH keys), or unauthorized network operations.\n- [REMOTE_CODE_EXECUTION]: The skill does not perform any external downloads, package installations, or execution of remote scripts. The workflow is entirely based on document manipulation and human-in-the-loop review.\n- [COMMAND_EXECUTION]: Tool usage is limited to standard documentation and task management operations. There is no evidence of arbitrary shell command execution, privilege escalation attempts (e.g., sudo), or persistence mechanisms.
Audit Metadata