pr
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses standard, well-known tools like
gitandgh(GitHub CLI) to manage pull requests within the local repository environment. - [SAFE]: Command execution is limited to legitimate Git and GitHub operations (
git status,git diff,git log,gh pr create) required for the skill's stated purpose. - [SAFE]: The skill reads commit history and code diffs to generate PR descriptions. Access is restricted to the current project scope and does not involve sensitive system or credential files.
- [SAFE]: The skill processes untrusted data from repository history. Ingestion points:
git logandgit diff(SKILL.md). Boundary markers: Absent. Capability inventory:gh pr create,git status,git log(SKILL.md). Sanitization: Absent. This represents a standard surface for indirect prompt injection that is typical for repository management tools and lacks high-risk or arbitrary code execution capabilities.
Audit Metadata