github
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- Indirect Prompt Injection (LOW): The skill processes data from external sources (GitHub issues, PRs, and workflow logs) which could contain malicious instructions. (1) Ingestion points: outputs from 'gh api', 'gh issue list', 'gh pr checks', and 'gh run view'. (2) Boundary markers: None specified in the command examples. (3) Capability inventory: The 'gh' CLI provides extensive read/write access to repository data. (4) Sanitization: Not implemented in the skill's examples.
- External Downloads (LOW): The skill depends on the 'gh' CLI binary. Evidence: Metadata indicates installation via 'brew' or 'apt'. Trust Status: GitHub and standard package managers are trusted sources, which downgrades the severity of this dependency.
Audit Metadata