product-spec-builder
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill is strictly informational, consisting of Markdown-based prompts and document templates. No scripts or binary files are present in the package.
- [NO_CODE]: Analysis confirms the absence of code files, binary executables, or package manifests (like package.json or requirements.txt). The skill functions entirely through natural language instructions.
- [DATA_EXPOSURE]: The agent is instructed to read and write only to 'Product-Spec.md' and 'Product-Spec-CHANGELOG.md'. No patterns suggesting access to sensitive files or hardcoded credentials were found.
- [COMMAND_EXECUTION]: There are no instances of system calls, subprocess spawning, or utility executions (e.g., curl, wget, sudo).
Audit Metadata