Skills
skills/maxritter/claude-codepro/spec-bugfix-plan/Gen Agent Trust Hub

spec-bugfix-plan

Pass

Audited by Gen Agent Trust Hub on Apr 10, 2026

Risk Level: SAFECOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses shell commands to manage worktrees, interface with the pilot CLI, and execute script companions via Node.js.
  • [REMOTE_CODE_EXECUTION]: It identifies and runs a Node.js script (codex-companion.mjs) located within the local plugin cache for OpenAI Codex.
  • [DATA_EXFILTRATION]: Performs local network requests using curl to localhost:41777 to synchronize or delete plan annotations in the integrated console.
  • [PROMPT_INJECTION]: The skill processes untrusted data from bug descriptions and project files which guides the agent's logic. Ingestion points: User arguments and project source code. Boundary markers: Use of markdown headers for structure. Capability inventory: Bash execution, file writing, and skill invocation. Sanitization: None detected.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 10, 2026, 07:55 PM
Security Audit — agent-trust-hub — spec-bugfix-plan