pr
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses git and gh CLI tools to interact with the local repository and GitHub, performing actions such as pushing branches and creating or editing pull requests.
- [PROMPT_INJECTION]: The skill parses untrusted data from commit logs and code diffs to generate PR descriptions, which is a surface for indirect prompt injection. Ingestion points: git log and git diff (SKILL.md). Boundary markers: None. Capability inventory: git push, gh pr create, and gh pr edit. Sanitization: None.
Audit Metadata