Skills
skills/chenhunghan/jira-skill/jira/Gen Agent Trust Hub

jira

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTIONCREDENTIALS_UNSAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides instructions to download and install the acli tool from Atlassian's official site and the mdadf tool from the author's GitHub repository.
  • [REMOTE_CODE_EXECUTION]: Installation instructions for the mdadf tool include downloading a binary archive via curl, extracting it, and moving it to a system path.
  • [COMMAND_EXECUTION]: The skill constructs and executes shell commands for acli and mdadf using user-provided input. It utilizes process substitution and temporary files for handling rich text content.
  • [PROMPT_INJECTION]: The skill ingests untrusted user Markdown to generate Jira ticket content. Ingestion points include summaries and descriptions; boundary markers include HEREDOCS; capabilities include work item mutations; and explicit sanitization of shell-interpreted strings is absent.
  • [CREDENTIALS_UNSAFE]: The skill reads project-specific settings from .jira-skill.json and global settings from ~/.config/jira-skill/config.json. These files contain project keys for resolution and do not store sensitive credentials or API tokens.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 04:31 PM