Skills
skills/eins78/plot/plot-release/Gen Agent Trust Hub

plot-release

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes git commands (git tag, git push, git commit) and the GitHub CLI (gh) to manage project releases. These commands are executed after user confirmation. It also checks for and suggests the use of versioning tools like pnpm and @changesets/cli if detected in the project.
  • [DATA_EXPOSURE]: The skill reads local project files (docs/plans/delivered/, CLAUDE.md, package.json) and git logs to identify completed work and generate release notes. This data access is necessary for the skill's functionality and remains within the local environment.
  • [PROMPT_INJECTION]: The skill processes content from local markdown files to generate verification checklists and release summaries. This creates an indirect prompt injection surface; however, the risk is minimal as the workflow is designed for internal project use and explicitly requires manual verification of all generated summaries and confirmation of commands before execution.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 08:54 AM