attach-review-to-pr
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses the official GitHub CLI tool (gh) to interact with GitHub APIs for pull request reviews, which is standard behavior for developer-oriented tools.
- [SAFE]: External references and example repositories point to the author's own organization (NeoLabHQ) or official GitHub services, posing no external security risk.
- [SAFE]: The skill does not contain any malicious code, obfuscation, hardcoded credentials, or unauthorized access patterns.
- [SAFE]: The skill possesses a surface for indirect prompt injection by ingesting untrusted data (PR diffs, metadata) from GitHub. Evidence: (1) Ingestion points: PR files, diffs, and comments are read via gh api in SKILL.md. (2) Boundary markers: None present. (3) Capability inventory: Command execution limited to gh CLI and specific MCP tools. (4) Sanitization: No explicit sanitization of input data is described.
Audit Metadata