create-pr
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes git and gh commands as intended for pull request creation. No high-risk or arbitrary command execution was detected.
- [DATA_EXPOSURE] (SAFE): The skill reads repository metadata and PR templates to function, which is appropriate for a PR creation tool and does not involve unauthorized access to sensitive files.
- [INDIRECT_PROMPT_INJECTION] (LOW):
- Ingestion points: Pull request titles and bodies are generated based on user input or code analysis.
- Boundary markers: The skill uses a single-quoted heredoc ('EOF') for the PR body, which effectively prevents shell interpolation or execution of the content within the body.
- Capability inventory: The skill has access to git (push, status, log) and gh (pr create) for repository management.
- Sanitization: Implements strict regex validation for PR titles, which acts as a secondary filter for the content.
Audit Metadata