prd
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is designed to facilitate project planning by generating markdown documents. No malicious patterns such as prompt injection, data exfiltration, or unauthorized code execution were found.
- [DATA_EXPOSURE]: In 'feature mode', the skill reads the local file tree and configuration files like
package.jsonto identify the existing technology stack. This is a limited and necessary read operation for accurate document generation. - [COMMAND_EXECUTION]: The skill performs file system writes to create the
.planning/directory and save generated PRD files. These actions are transparently disclosed and aligned with the tool's core functionality. - [EXTERNAL_DOWNLOADS]: The skill includes an optional research step that uses internal agent tools to gather information about similar applications, which is a standard part of the requirements gathering process.
Audit Metadata