Skills
NYC
skills/duc01226/easyplatform/fix-issue/Gen Agent Trust Hub

fix-issue

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION] (LOW): The skill is susceptible to indirect prompt injection because it fetches and processes untrusted data from external GitHub issues without explicit sanitization or delimiters.\n
  • Ingestion points: Issue descriptions and metadata fetched via gh issue view in Phase 1.\n
  • Boundary markers: Absent; the skill does not explicitly isolate fetched content from its own instructions.\n
  • Capability inventory: Subprocess execution via gh and grep, local file system access for analysis storage, and PR creation capabilities via gh pr create.\n
  • Sanitization: The risk is mitigated by the 'Wait for Approval' phase (Phase 6), which requires a human to review the analysis and proposed fix before any changes are executed.\n- [COMMAND_EXECUTION] (SAFE): The skill uses standard command-line tools (gh, grep) for their intended purposes in a developer workflow. The commands are focused on repository management and information retrieval.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:38 PM