pr-draft-summary
Pass
Audited by Gen Agent Trust Hub on Mar 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- Command Line Operations: The skill utilizes git commands like
status,diff, andlogto inspect the working directory. This data is essential for its core purpose of generating pull request metadata. - Internal Script Invocations: It invokes a local shell script located at
.agents/skills/final-release-review/scripts/find_latest_release_tag.shto retrieve the latest version tag. This represents an internal dependency for determining versioning context. - Data Processing Surface: The skill processes commit messages and code diffs (Ingestion points) to generate the PR draft (Capability inventory). No explicit boundary markers or sanitization steps are used to isolate this content from the assistant's logic. As a result, the generated summaries are directly informed by the content of the repository's history and current changes.
Audit Metadata