managing-github-issues
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill processes untrusted data from external sources by listing GitHub issues (
gh issue list). This presents a standard surface for indirect prompt injection where an attacker could place instructions in an issue title. However, the skill does not possess high-risk capabilities like arbitrary code execution that could be triggered by such data. - [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials or access to sensitive local file paths (e.g., SSH keys, .env files) were found. The skill uses standard CLI commands for their intended purpose.
- [Remote Code Execution] (SAFE): There are no patterns involving the download or execution of remote scripts, and no use of unsafe dynamic execution functions like eval or exec.
- [Command Execution] (SAFE): The shell commands provided are restricted to the GitHub CLI and do not contain shell injection vulnerabilities or attempts to escalate privileges.
Audit Metadata