spec-driven-development
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists entirely of markdown documentation, artifact templates, and prompt patterns. No executable code or runtime logic was found in the repository.
- [SAFE]: Prompt patterns provided in
references/prompt-patterns.mdare instructional tools designed to guide AI agents through a specific methodology (SDD). They do not attempt to bypass safety filters or extract system prompts. - [SAFE]: The skill explicitly promotes security best practices, such as instructing users to include security constraints in a
constitution.mdfile (e.g., preventing SQL injection, managing secrets, and enforcing authentication). - [SAFE]: No hardcoded credentials, sensitive file access, or unauthorized network operations were detected. All URL references point to reputable sources like GitHub, npm, and official documentation for AI tools.
- [SAFE]: CI/CD integration examples provided in
references/quality-gates.mdare static templates for users to adapt, posing no risk during the analysis of the skill itself.
Audit Metadata