ship
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes git and the GitHub CLI (gh) to perform standard development tasks such as branch checking, PR creation, and status monitoring. These commands are necessary for the skill's stated purpose and do not involve unauthorized privilege escalation.\n- [PROMPT_INJECTION]: The skill processes data from external PR comments, creating a potential surface for indirect prompt injection.\n
- Ingestion points: Review summaries, inline comments, and unresolved threads fetched via
gh pr viewandgh apias described in SKILL.md.\n - Boundary markers: None explicitly defined to isolate comment content from agent instructions.\n
- Capability inventory: Subprocess calls for code fixes, git commits, and network pushes to remote repositories.\n
- Sanitization: No automated sanitization is specified; however, the skill provides a detailed triage logic requiring the agent to critically evaluate whether comments are valid or invalid before implementation, which serves as a cognitive defense mechanism.
Audit Metadata