The Agent Skills Directory

[COMMAND_EXECUTION]: Executes local shell commands using git and gh (GitHub CLI) to retrieve branch status, commit history, and to perform repository actions like pushing branches and creating/editing pull requests.
[PROMPT_INJECTION]: Potentially vulnerable to indirect prompt injection. The skill ingests untrusted data from the local environment via git diff and git log. If these sources contain malicious instructions embedded in code comments or commit messages, they could influence the agent's behavior during the summary generation or command construction phases. * Ingestion points: Commits and diffs are read using git log and git diff in SKILL.md. * Boundary markers: No explicit boundary markers or instructions are provided to the model to ignore embedded commands within the processed data. * Capability inventory: The skill has the capability to push to remote repositories and execute GitHub CLI commands (SKILL.md). * Sanitization: No specific sanitization or filtering is applied to the content retrieved from the git history before it is used to build the PR body.

pr