Skills
skills/ravnhq/ai-toolkit/agent-pr-creator/Gen Agent Trust Hub

agent-pr-creator

Pass

Audited by Gen Agent Trust Hub on Feb 23, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes standard git and GitHub CLI (gh) commands to retrieve repository status, commit history, and create pull requests. These operations are essential to the skill's primary function and utilize well-known, official tools.
  • [PROMPT_INJECTION]: The skill processes untrusted data from git commit messages and code diffs, which represents an indirect prompt injection surface.
  • Ingestion points: Git commit logs and code differences retrieved via git log and git diff.
  • Boundary markers: Absent; the instructions do not specify the use of delimiters or warnings to ignore instructions embedded within the git data.
  • Capability inventory: Execution of subprocess commands using git and gh.
  • Sanitization: No explicit sanitization or filtering of the commit content is performed before it is analyzed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 23, 2026, 08:50 PM