ln-500-story-quality-gate
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill is a well-structured L2 coordinator that follows project-specific contracts for runtime management and external tool integration.
- [COMMAND_EXECUTION]: The skill utilizes local Node.js scripts and system CLI tools (git, gh) to manage its state and interact with external task tracking systems. These operations are conducted within the local project environment to automate the quality gate process.
- [PROMPT_INJECTION]: The skill reviews code and task metadata as part of its primary function. It includes instructions in its prompt templates to follow project standards and security practices, managing the surface area for potential indirect prompt injection from reviewed content.
Audit Metadata