team-lifecycle-v4
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a robust, multi-phase orchestration framework for software development, coordinating tasks across specialized roles such as analysts, planners, and testers.
- [SAFE]: Includes explicit security review criteria in
specs/quality-gates.mdandroles/reviewer/commands/review-code.mdto identify hardcoded secrets, SQL injection vectors, and unsafe execution patterns (eval/exec) in the code being processed. - [SAFE]: Employs a resident supervisor agent to ensure cross-artifact consistency and process compliance, providing an automated layer of oversight between pipeline phases.
- [SAFE]: Uses structured state management and an internal message bus (
mcp__ccw-tools__team_msg) to maintain context and coordination without relying on untrusted external services. - [SAFE]: Operates through a local CLI tool (
ccw cli) for analysis and implementation tasks, ensuring that operations are contained within the designated project environment.
Audit Metadata