Skills
skills/arabelatso/skills-4-se/change-log-generator/Gen Agent Trust Hub

change-log-generator

Pass

Audited by Gen Agent Trust Hub on Mar 6, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides Python and Bash snippets that execute git and gh (GitHub CLI) commands to retrieve repository history, commit details, and pull request information.
  • [INDIRECT_PROMPT_INJECTION]: The skill possesses an attack surface for indirect prompt injection by processing untrusted data from external sources.
  • Ingestion points: Data enters the agent context via git log output and gh pr view JSON responses in SKILL.md (Step 1, 2, and 5).
  • Boundary markers: The instructions do not define specific delimiters or use "ignore embedded instructions" markers when processing commit messages or PR bodies.
  • Capability inventory: The skill has the ability to execute shell commands (git, gh) and perform file system writes (updating CHANGELOG.md).
  • Sanitization: While the skill uses regular expressions to parse types and scopes (e.g., feat, fix), it does not sanitize the main description or body text of commits and PRs before including them in the generated output.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 6, 2026, 10:20 PM