Skills
skills/nguyenhuy158/skills/pr-creator/Gen Agent Trust Hub

pr-creator

Pass

Audited by Gen Agent Trust Hub on Apr 24, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes local shell commands to interact with the git repository and the GitHub CLI (gh). It executes git branch, git status, git log, git diff, and git push to gather information and synchronize code.
  • [SAFE]: The pull request creation command (gh pr create) uses a quoted here-doc ('EOF') for the PR body. This is a security best practice that prevents shell expansion or command injection within the generated content.
  • [SAFE]: The skill does not attempt to handle or store credentials; instead, it correctly directs the user to perform authentication through the official gh auth login workflow.
  • [SAFE]: Instructions provided in the error handling section (such as using Homebrew to install the GitHub CLI) refer to well-known, trusted package managers and official tools.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 24, 2026, 04:14 AM