get-pr-comments
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted content from pull request comments, creating a surface for indirect prompt injection.
- Ingestion points: Pull request review and discussion comments (SKILL.md workflow).
- Boundary markers: None specified in the instructions to separate external data from the prompt context.
- Capability inventory: Data fetching and summarization of external text.
- Sanitization: No sanitization or validation of the fetched comments is mentioned.
Audit Metadata