Skills
skills/cycleuser/skills/shen-shi/Gen Agent Trust Hub

shen-shi

Pass

Audited by Gen Agent Trust Hub on Apr 3, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection because it ingests and processes untrusted content from external sources.
  • Ingestion points: Data is retrieved from GitHub issue descriptions and pull request bodies via the GitHub CLI.
  • Boundary markers: There are no specific delimiters or instructions provided to the agent to ignore potentially malicious commands embedded within the fetched content.
  • Capability inventory: The skill has permissions to read from the network via GitHub tools and write report files to the local /tmp directory.
  • Sanitization: The skill does not mention any sanitization, filtering, or validation of the external content before it is used to generate triage reports.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 3, 2026, 02:23 AM