jira-cli
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill facilitates the execution of 'jira' CLI commands for issue and project management. This is the primary intended use case and utilizes the standard syntax of the ankitpokhrel/jira-cli tool.
- [PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection as it retrieves data from external Jira issues. 1. Ingestion points: Data from Jira issues is read via 'jira issue view' and 'jira issue list' as documented in SKILL.md. 2. Boundary markers: There are no explicit delimiters or instructions provided to the agent to treat issue content as untrusted. 3. Capability inventory: The skill enables the agent to perform write operations, including creating, editing, and deleting issues (e.g., 'jira issue delete'). 4. Sanitization: There is no evidence of content sanitization or validation for the ingested Jira data.
Audit Metadata