implement-issue
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill triggers the execution of local orchestration scripts such as
.claude/scripts/implement-issue-orchestrator.shwith user-supplied arguments to manage the development lifecycle. - [PROMPT_INJECTION]: There is a potential for indirect prompt injection via the GitHub issue content processed by the skill. Malicious instructions within an issue description could attempt to manipulate the specialist agents involved in implementation and review stages.
- Ingestion points: Untrusted text from GitHub issue descriptions fetched by the orchestrator.
- Boundary markers: None identified in the skill definition to isolate external content from agent instructions.
- Capability inventory: Includes shell script execution, Git worktree operations, and GitHub Pull Request creation.
- Sanitization: No evidence of sanitization or safety-filtering for the ingested issue content before it is passed to sub-agents.
Audit Metadata