workflow-patterns
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill outlines a standard software development lifecycle (TDD) and does not contain any suspicious logic or hidden instructions.
- [COMMAND_EXECUTION]: The implementation playbook includes examples of routine development commands such as 'git commit', 'git notes', 'pytest', 'ruff', and 'mypy'. These are used locally for project management and quality assurance.
- [PROMPT_INJECTION]: No evidence of prompt injection or instructions to bypass safety filters was found in the skill body or metadata.
- [DATA_EXFILTRATION]: The skill does not perform any network operations or access sensitive system paths (e.g., SSH keys, credentials). It operates solely on project-related files like 'plan.md' and 'spec.md'.
Audit Metadata