pr-threads-address
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill attempts to install a third-party GitHub CLI extension (agynio/gh-pr-review) if not already present.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection. It reads unresolved PR review comments and is instructed to make code modifications based on them.
- Ingestion points: Pull request review threads via 'gh pr-review review view' in SKILL.md.
- Boundary markers: None.
- Capability inventory: File modification, test creation, git committing, and network interaction via 'gh'.
- Sanitization: None.
- [COMMAND_EXECUTION]: Executes various 'gh' (GitHub CLI) commands to interact with pull requests and reviews.
Audit Metadata