release-note-writer
Pass
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [Command Execution]: The skill utilizes the GitHub CLI (gh) to automate the retrieval of issue and pull request data from the microsoft/vscode repository. This is a standard practice for maintaining documentation in software projects.
- [Indirect Prompt Injection Surface]: The process of summarizing GitHub issues involves ingesting content provided by external users, which introduces a theoretical surface for indirect injection.
- Ingestion points: Data is sourced from the microsoft/vscode repository through the gh search issues command.
- Boundary markers: There are no specific delimiters or instructional blocks defined to isolate external data from the skill's primary logic.
- Capability inventory: The agent is authorized to execute gh commands and perform file system writes in the local project directory.
- Sanitization: The skill treats the fetched descriptions as plain text for summarization without explicit filtering or validation steps.
- [File System Operations]: The skill manages release note files and images within the local project structure. These actions are limited to the /release-notes directory and are consistent with its documentation-focused purpose.
Audit Metadata