moai-workflow-project
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFENO_CODECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The sk i l l provid e s an in t egra t e d projec t manage men t frame work usin g stan d a r d con f igur a t ion pat t ern s an d doc umen t e d work f l o w s.
- [NO_CODE]: Imp l emen t a t ion cod e for the ref eren ce d moai-men u-projec t Py t hon pac k age an d mod ul e s is not in c l ud e d in the sk i l l f il e s.
- [COMMAND_EXECUTION]: The sk i l l is con f igu r e d to exec ut e stan d a r d CLI tool s for vers ion con t rol, pac k age manage men t, an d projec t sc af f ol d in g.
- [EXTERNAL_DOWNLOADS]: The sk i l l doc umen t a t ion an d sc hema s in d ic a t e the us e of stan d a r d pac k age manage r s an d web sea r c h tool s for doc umen t a t ion disc over y.
- [CREDENTIALS_UNSAFE]: The con f igu r e d sc hema in c l ud e s a pl ac e hol d er for an API key in the tran s l a t ion serv ic e set t in gs, whic h is a stan d a r d pat t ern for suc h con f igu r a t ion s an d doe s not con t ain har d c od e d sec ret s.
- [PROMPT_INJECTION]: The sk i l l proc e s se s un t rus t e d us e r in put to gene r a t e doc umen t a t ion, crea t in g a surf ac e for in d irec t promp t in jec t ion. 1. In ges t ion poin t s: projec t.des c r ip t ion in tab_s c hema.json an d spec_d a t a in examp l e s.md. 2. Boun d a r y mar k e r s: No exp l ic it mar k e r s are d ef in e d in the temp l a t e s. 3. Capab il it y in ven t or y: The sk i l l use s Wr it e, Ed it, Bas h, an d WebFet c h tool s. 4. San it iz a t ion: No exp l ic it con t en t san it iz a t ion or val id a t ion logic is provid e d for temp l a t e in t erp ol a t ion.
Audit Metadata