Skills
skills/github/awesome-copilot/suggest-awesome-github-copilot-skills/Gen Agent Trust Hub

suggest-awesome-github-copilot-skills

Pass

Audited by Gen Agent Trust Hub on Feb 25, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches skill definitions and associated assets from the official GitHub 'awesome-copilot' repository.
  • [COMMAND_EXECUTION]: Utilizes terminal commands such as curl to retrieve skill content and bundled assets from raw.githubusercontent.com.
  • [DATA_EXFILTRATION]: Performs local scans of the .github/skills/ directory to build a capability inventory, ensuring no duplicates or outdated versions exist; no sensitive data is transmitted outside of the trusted organization domain.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted data from a remote repository and local files.
  • Ingestion points: Processes content from README.skills.md and remote SKILL.md files.
  • Boundary markers: No explicit delimiters are defined to separate remote instructions from system prompts.
  • Capability inventory: Possesses file write access and the ability to execute terminal commands via #runInTerminal.
  • Sanitization: No explicit sanitization or validation logic is defined for the downloaded markdown content before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 25, 2026, 05:26 AM