paddle-pull-request
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes
git pushand the GitHub CLI (gh pr create) to automate Pull Request workflows. These commands are necessary for the skill's primary function and are executed within the user's local repository context. - [EXTERNAL_DOWNLOADS]: The skill references an official Pull Request template from the PaddlePaddle organization on GitHub. As GitHub is a well-known service and the organization is the legitimate target of the skill, this reference is considered safe.
- [PROMPT_INJECTION]: The skill includes a safety-conscious instruction that explicitly forbids adding bot or machine accounts as collaborators, providing a defensive measure against automated privilege misuse.
Audit Metadata