log-landing-issues
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill uses the GitHub CLI (gh) to manage issues, which is standard behavior for its objective.
- [PROMPT_INJECTION] (LOW): Indirect Prompt Injection Surface. The skill interpolates data from an audit tool that likely crawls external web content. 1. Ingestion points: Findings from the /check-landing skill mentioned in Step 1. 2. Boundary markers: None identified in the shell command templates. 3. Capability inventory: Shell execution of gh issue create and list in SKILL.md. 4. Sanitization: No evidence of input sanitization or escaping before interpolation into the issue template.
Audit Metadata