Skills
skills/vladm3105/aidoc-flow-framework/doc-spec-reviewer/Gen Agent Trust Hub

doc-spec-reviewer

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [SAFE]: Comprehensive analysis of the skill instructions and metadata reveals no malicious intent, obfuscation, or safety bypass attempts. The skill's behavior is strictly aligned with its stated purpose of documentation review.
  • [COMMAND_EXECUTION]: The skill instructs the AI agent to execute local bash commands such as sha256sum and yq to calculate hashes for its drift detection feature. These operations are performed on local files within the project's documentation directories (e.g., docs/09_SPEC/) and do not involve arbitrary command execution from untrusted sources.
  • [DATA_EXFILTRATION]: There are no network-related commands (e.g., curl, wget) or external API calls defined in the skill. File system access is scoped to reading and writing documentation artifacts and a local metadata cache (.drift_cache.json), with no access to sensitive system paths or user credentials.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 04:25 AM
Security Audit — agent-trust-hub — doc-spec-reviewer