Skills
skills/bioshaun/tc-skills/gitee-pr/Gen Agent Trust Hub

gitee-pr

Pass

Audited by Gen Agent Trust Hub on Feb 24, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The script scripts/create_gitee_pr.py performs multiple local git operations using subprocess.run. These include checking repository status, validating branch names, reading commit logs, and pushing branches. The implementation uses argument lists rather than raw strings, which effectively prevents shell injection vulnerabilities.
  • [DATA_EXFILTRATION]: The skill transmits the user's GITEE_TOKEN to gitee.com (a well-known service) to facilitate the creation of pull requests. While the API host can be configured via a command-line argument, this is a standard feature for supporting private Gitee Enterprise instances.
  • [PROMPT_INJECTION]: The skill processes untrusted data from the git environment, such as commit messages and branch names. It mitigates potential injection risks by enforcing strict regular expression validation and standard PR templates before the data is sent to the Gitee API.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 24, 2026, 09:18 AM