release
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Executes standard
gitcommands (fetch,pull,add,commit,push,describe,log) andgh(GitHub CLI) commands (auth,pr view,api,workflow run,release view,run list) to automate the software release lifecycle. - [EXTERNAL_DOWNLOADS]: References the author's GitHub repository
github.com/akiojin/llmlbfor release verification, which is a legitimate vendor resource aligned with the skill's purpose. - [COMMAND_EXECUTION]: Invokes a local script
./scripts/prepare-release.sh. This is a common pattern for release automation where specific logic is encapsulated in project-level scripts. - [DATA_EXPOSURE]: Processes GitHub Pull Request descriptions to identify closing issue numbers. The script includes sanitization (using
grep -oE '[0-9]+') to ensure only numeric IDs are extracted and used in subsequent API calls, mitigating potential injection risks from untrusted PR content.
Audit Metadata