pr-release
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the GitHub CLI (gh) and Git to perform its primary functions, such as reading commit history and updating Pull Request descriptions. These actions are scoped to the project repository and are initiated based on user request.
- [DATA_EXFILTRATION]: No evidence of unauthorized data transmission or access to sensitive local files (e.g., credentials or environment variables) was found. Interaction with GitHub is restricted to standard repository metadata relevant to release preparation.
- [PROMPT_INJECTION]: The skill mitigates risks from processing untrusted input (such as external commit messages) by implementing a strict Confirmation Protocol. All generated artifacts must be presented under a specific header (=== RELEASE ARTIFACTS READY FOR APPROVAL ===) and require explicit user approval before any irreversible actions are performed via the GitHub CLI.
Audit Metadata