agile-status
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscated code, or unauthorized network operations were detected. The skill is designed for project management and follows standard engineering practices for status reporting.
- [COMMAND_EXECUTION]: The 'Closure' mode specifies running verification tools like lint, typecheck, and tests. These are routine development tasks performed on the local environment to validate project state and do not involve arbitrary or malicious command execution.
- [PROMPT_INJECTION]: The skill uses a variable ($ARGUMENTS) to receive initial context from the user. While this is an ingestion point for external data, the skill's instructions require the use of specific templates and defined processes, which effectively constrains the agent's behavior and reduces the risk of malicious overrides.
- [DATA_EXFILTRATION]: The skill reads project-specific information such as git logs and task descriptions to consolidate status reports. This access is limited to the local file system and repository context, with no indicators of data being sent to external or unauthorized destinations.
Audit Metadata