shape-up
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a phased conversational workflow (Elicitation and Specification) designed to gather software requirements. It uses specific reference files loaded conditionally to provide guidance on audience adaptation, domain modeling, and shaping techniques.
- [EXTERNAL_DOWNLOADS]: The documentation references the author's GitHub repository (github.com/synapseradio/ai-skills) for installation purposes. This is a standard distribution method for skills and does not involve unauthorized remote code execution.
- [COMMAND_EXECUTION]: During the specification phase, the skill instructs the agent to ask the user for a target file path and then write the generated specification to that location. This file system interaction is a core functional requirement of the skill and is triggered only upon explicit user confirmation.
Audit Metadata