github
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides installation instructions for the official GitHub CLI using
brewandapt. These are well-known and trusted package management systems providing software from a trusted vendor. - [COMMAND_EXECUTION]: The skill utilizes official
ghCLI commands to interact with GitHub services. This is the intended primary purpose of the skill and does not include arbitrary or dangerous shell execution beyond the scope of the tool. - [PROMPT_INJECTION]: The skill processes external data from GitHub issues and pull requests, creating a surface for indirect prompt injection. 1. Ingestion points: Data retrieved via
gh api,gh issue list, andgh pr checks. 2. Boundary markers: Not explicitly defined in the provided markdown. 3. Capability inventory: Execution ofghcommands and data retrieval. 4. Sanitization: No specific filtering or escaping of retrieved content is mentioned. This risk is inherent to the task of processing external repository data and is handled by the agent's core safety protocols.
Audit Metadata