Skills
skills/nguyenvanchiens/my-skills/gitlab-flow/Gen Agent Trust Hub

gitlab-flow

Pass

Audited by Gen Agent Trust Hub on May 9, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Potential for indirect prompt injection through untrusted data ingestion.
  • Ingestion points: The skill reads Jira task descriptions provided by the user and retrieves Merge Request comments and descriptions from GitLab using glab mr view (SKILL.md).
  • Boundary markers: There are no explicit boundary markers or instructions to treat ingested content as untrusted data.
  • Capability inventory: The skill allows the agent to modify the local filesystem, commit changes, push to remote repositories, and merge code in GitLab (SKILL.md).
  • Sanitization: No sanitization or escaping of external content is specified before interpolation into prompts.
Audit Metadata
Risk Level
SAFE
Analyzed
May 9, 2026, 02:34 AM