openspec-ff-change
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes multiple commands using a CLI tool named 'openspec'. These commands are used to initialize changes, check status, and retrieve instructions for artifact creation. This is consistent with the skill's stated purpose of automating OpenSpec workflows.
- [SAFE]: Analysis of the skill's logic, metadata, and execution flow revealed no signs of prompt injection, data exfiltration, or malicious persistence mechanisms. The skill follows best practices by separating instruction context from generated output.
- [SAFE]: The skill processes artifact data and instructions which presents a surface for indirect prompt injection. However, the risk is minimized by the use of structured templates and clear instructions to the agent to treat context as constraints rather than content.
Audit Metadata