pr
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements security best practices by including a 'Quick Review' step that specifically checks for sensitive information exposure, such as API keys, secrets, and .env file contents, before any code is committed or pushed.
- [SAFE]: Includes a 'Base Branch Protection' mechanism that prevents Pull Requests from directly targeting production branches like 'master' or 'main' without explicit user confirmation and warnings.
- [PROMPT_INJECTION]: The skill processes untrusted external data from git diffs and logs to generate PR descriptions. This presents a potential surface for indirect prompt injection where malicious code comments or commit messages could attempt to influence the agent's summarization. However, the risk is inherent to the tool's primary purpose and is mitigated by the structured analysis steps.
- [COMMAND_EXECUTION]: Uses standard development tools like 'git' and 'gh' for their intended purposes (fetching, pushing, and PR management). No arbitrary or suspicious command execution patterns were identified.
Audit Metadata