Skills
skills/outlinedriven/odin-claude-plugin/gh-fix-ci/Gen Agent Trust Hub

gh-fix-ci

Pass

Audited by Gen Agent Trust Hub on Apr 5, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes shell commands via 'subprocess.run' and 'subprocess.Popen' to interact with 'git' and 'gh' (GitHub CLI). These are standard operations for a repository management skill.
  • [COMMAND_EXECUTION]: The script 'scripts/inspect_pr_checks.py' uses subprocess to call 'gh auth status' and 'gh pr checks'. The static analyzer flagged this, but in context, these are necessary for the skill's documented functionality of inspecting CI/CD failures.
  • [DATA_EXFILTRATION]: While the skill accesses GitHub logs and PR data, this information stays within the agent's context for summarization and is only sent to the official GitHub API via the 'gh' tool. This is a legitimate workflow and not a security concern.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 5, 2026, 05:14 PM