orchestrate-product
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local shell commands (find, git log) and a synchronization script (bun manifest-sync.ts) to identify project artifacts and state. These commands are used for introspection and do not involve user-controlled inputs.
- [DATA_EXFILTRATION]: Reads project-specific files such as .agents/manifest.json and research/product-context.md to track development progress. Access is confined to the local project directory and no data is transmitted externally.
Audit Metadata