The Agent Skills Directory

[COMMAND_EXECUTION]: The skill executes 'openspec' CLI commands (openspec list, openspec status, openspec instructions apply) to retrieve change information and artifact paths. These operations are essential for the skill's primary function and are limited to the local environment.
[DATA_EXPOSURE]: The skill reads local project files including tasks.md, design.md, and specification files within the openspec/changes/ directory. It also performs keyword searches across the codebase. This access is required for verifying implementation against requirements and does not involve exfiltration of sensitive information.
[INDIRECT_PROMPT_INJECTION]: As the skill parses external data from specs and tasks, it is potentially exposed to indirect prompt injection. However, the risk is minimized as the skill focuses on specific markdown patterns (e.g., checkboxes, requirement headers) and generates a report rather than executing commands derived from the content of those files.

openspec-verify-change