changeset-doc-sync
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes local shell commands including
git diffandfindto identify changes in the/example,www, andskills/convexdirectories. These commands are used for file discovery and state analysis, which is consistent with the skill's stated purpose of documentation synchronization. - [PROMPT_INJECTION]: The skill processes external data by reading markdown files (
.md,.mdx) and source code in the repository to update documentation. This creates a surface for indirect prompt injection if the files being read contain adversarial instructions. However, the skill's operations are limited to local file system reads/writes and reporting, with no network exfiltration or dangerous dynamic execution capabilities. - Ingestion points: Files in
www/,skills/convex/,.changeset/, andexample/directories. - Boundary markers: None explicitly defined for interpolated file content.
- Capability inventory: Local file reads/writes,
git diff, andfindcommand execution. No network access or remote code execution. - Sanitization: Content is processed as markdown documentation sync data.
Audit Metadata