prd-to-spec
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches PRD content from GitHub Issue URLs, which is a well-known service for project management.
- [COMMAND_EXECUTION]: Performs codebase scanning and file writing to the local system, which are expected behaviors for a development tool.
- [PROMPT_INJECTION]: Indirect injection surface via untrusted PRDs. Ingestion points: tasks/ directory and GitHub URLs. Boundary markers: Absent. Capability inventory: File system read and write. Sanitization: Absent.
Audit Metadata