merge-pr
Fail
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: HIGHCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
sourcecommand to load.local/prep.env. Sourcing a file executes its contents as shell commands in the current process, which can lead to arbitrary code execution if the file contains malicious instructions. - [COMMAND_EXECUTION]: The skill executes a local script located at
scripts/pr-merge. Since this script is not bundled with the skill, it relies on the host environment and could be replaced or modified by an attacker to run unauthorized commands. - [CREDENTIALS_UNSAFE]: The skill references and reads multiple files in the
.local/directory, specifically.local/prep.env, which is a common location for storing sensitive API tokens and credentials. Accessing these files without strict validation poses a risk of credential exposure.
Recommendations
- AI detected serious security threats
Audit Metadata