av-cli
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes Bash tools to run av, git, jq, and cat commands. This is necessary for interacting with the repository and the Aviator service.- [DATA_EXFILTRATION]: The skill reads the .git/av/av.db file to access branch relationships and PR metadata. No external network transmission of this data was detected.- [PROMPT_INJECTION]: The skill ingests PR titles and branch names from the av.db file. While this represents an indirect injection surface, it is a standard part of the tool's operation. (Ingestion: SKILL.md; Boundary markers: Absent; Capabilities: av, git, jq, cat, test; Sanitization: Absent).
Audit Metadata