review-prd
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill operates entirely within the local development environment, focusing on reading and analyzing documents and source code for product planning.
- [COMMAND_EXECUTION]: The skill performs file system operations to read the codebase and PRD files from directories such as
./plans/. It also updates identified PRD files with user-approved modifications during its resolution phase. - [PROMPT_INJECTION]: The skill analyzes external content (PRDs and codebase), creating a potential surface for indirect prompt injection. However, the skill's logic is dedicated to technical evaluation and document editing rather than instruction execution, and it involves user oversight for all document updates.
Audit Metadata