openspec-new-change
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes several local CLI commands to manage project artifacts through the
openspecutility.\n - Evidence: The skill uses
openspec new change,openspec status,openspec schemas, andopenspec instructionsto perform its core functions.\n - Context: The skill includes an explicit step to derive a 'kebab-case' name from user input and provides a guardrail to reject names that do not follow this format. This instruction prevents the injection of malicious shell metacharacters (e.g., semicolons, backticks, or pipe symbols) into the command execution flow.
Audit Metadata