Skills
skills/fengshao1227/ccg-workflow/openspec-archive-change/Gen Agent Trust Hub

openspec-archive-change

Pass

Audited by Gen Agent Trust Hub on Apr 4, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes shell commands mkdir and mv to manage the local filesystem by creating an archive directory and moving change folders. These operations are consistent with the skill's primary purpose.\n- [COMMAND_EXECUTION]: The skill invokes the openspec CLI tool to list changes and retrieve status information.\n- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it processes user-controlled data from local files.\n
  • Ingestion points: Reads the contents of tasks.md and specification files in openspec/changes/ to evaluate completion.\n
  • Boundary markers: No explicit delimiters are used when the agent reads file content to ignore potentially malicious instructions embedded in those files.\n
  • Capability inventory: The skill allows for filesystem modifications (mkdir, mv) and interaction with the openspec CLI tool.\n
  • Sanitization: No sanitization or verification of file content is performed before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 4, 2026, 08:44 AM
Security Audit — agent-trust-hub — openspec-archive-change