adr
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses a bash command to list, sort, and identify the highest existing ADR number in the docs/adr/ directory. This is a restricted, non-parameterized command used solely for file management.
- [PROMPT_INJECTION]: The skill processes content from project-specific documentation files (plans and specifications). This ingestion point represents a potential indirect prompt injection surface where instructions could be embedded in the text. However, the skill employs human-in-the-loop validation by presenting extracted candidates for selection before processing.
Audit Metadata