Skills
skills/cockroachdb/cockroach/file-crdb-issue/Gen Agent Trust Hub

file-crdb-issue

Pass

Audited by Gen Agent Trust Hub on Mar 28, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: Utilizes the GitHub CLI (gh) to interact with the cockroachdb/cockroach repository.
  • Executes gh label list to retrieve valid repository labels.
  • Executes gh issue create to submit formatted issues.
  • Employs a secure shell pattern using quoted heredocs (cat <<'EOF') within a command substitution to safely handle user-provided issue bodies, preventing shell expansion or command injection from the input text.
  • [PROMPT_INJECTION]: The skill processes untrusted content from remote issue templates stored in the target repository.
  • This potential attack surface is addressed by a mandatory confirmation step where the user must review the fully assembled issue preview before submission.
  • [SAFE]: The skill's operations are strictly scoped to the vendor's own repository (cockroachdb/cockroach), aligning with the author context.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 28, 2026, 02:07 AM