Skills
skills/firetiger-oss/skills/rollout/Gen Agent Trust Hub

rollout

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides instructions for the user to install the rollout skill family from the vendor's repository using the npx package runner.
  • [COMMAND_EXECUTION]: The skill uses git and gh (GitHub CLI) to manage pull requests and repository state. It also triggers deployments using tools like ArgoCD or GitHub Actions after obtaining explicit user consent.
  • [PROMPT_INJECTION]: The skill ingests data from pull request descriptions and code diffs, creating a potential surface for indirect prompt injection. This risk is mitigated by mandatory human confirmation gates for all destructive actions.
  • Ingestion points: Pull request metadata and diff content retrieved via gh pr view and gh pr diff commands.
  • Boundary markers: The skill uses a structured progress checklist to maintain state and context.
  • Capability inventory: Capabilities include merging pull requests and executing deployment trigger commands (e.g., gh workflow run, argocd app sync).
  • Sanitization: Relies on human review of generated monitoring plans and explicit confirmation before executing merges or deployments.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 04:40 PM