recipe-update-doc
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Analysis of the skill instructions and scripts revealed no malicious patterns, obfuscation, or unauthorized access attempts. The skill functions as a coordinator for documentation updates using internal sub-agents.
- [COMMAND_EXECUTION]: Shell operations are restricted to listing files in documentation directories (
docs/design,docs/prd,docs/adr). No untrusted input is interpolated into these commands, eliminating command injection vulnerabilities. - [PROMPT_INJECTION]: The skill defines strict quality gates and review protocols. It does not contain instructions to override safety guidelines or extract sensitive agent configuration.
- [DATA_EXFILTRATION]: No network connectivity or access to sensitive files (e.g., credentials, SSH keys) is present. The skill's scope is strictly limited to project documentation.
Audit Metadata