context-driven-development
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill provides purely instructional content for a documentation-driven development methodology.\n- [SAFE]: Mentions of reading project files like product.md and tech-stack.md are standard operations for development-focused agents and constitute the primary purpose of the skill.\n- [SAFE]: The command /supaconductor:setup is a vendor-specific tool used for initializing the project context environment.\n- [PROMPT_INJECTION]: The skill defines a surface for indirect prompt injection by reading project-specific documentation.\n
- Ingestion points: Project artifacts including product.md, tech-stack.md, and workflow.md.\n
- Boundary markers: Not explicitly defined in the instructions.\n
- Capability inventory: File system access via read_file and execution of the /supaconductor:setup tool.\n
- Sanitization: Not specified.
Audit Metadata