feature-generator
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security threats were identified. The skill performs localized text processing and file synchronization between 'spec.md' and 'features.md'.
- [PROMPT_INJECTION]: The skill ingests user-provided text from 'spec.md' and 'features.md'. While there is a theoretical surface for indirect prompt injection within these source files, the skill's restricted capabilities (reading/writing markdown only) and the absence of executable tool calls mitigate any significant risk.
Audit Metadata