orchestrate-product

Pass

Audited by Gen Agent Trust Hub on May 14, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes local shell commands (find, git log) and a synchronization script (bun manifest-sync.ts) to identify project artifacts and state. These commands are used for introspection and do not involve user-controlled inputs.
  • [DATA_EXFILTRATION]: Reads project-specific files such as .agents/manifest.json and research/product-context.md to track development progress. Access is confined to the local project directory and no data is transmitted externally.
Audit Metadata
Risk Level
SAFE
Analyzed
May 14, 2026, 04:04 PM
Security Audit — agent-trust-hub — orchestrate-product