make-change-file
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes local command execution via pnpm changes:preview and pnpm run lint. These operations are standard parts of the Remix development workflow and are intended to verify the validity of generated changelog files and ensure code quality.
- [PROMPT_INJECTION]: The skill features an indirect prompt injection surface as it processes external content from pull request diffs and commit histories. 1. Ingestion points: Pull request diffs, commit ranges, and existing change files (SKILL.md). 2. Boundary markers: No explicit delimiters or instructions to ignore embedded commands in the source data are provided. 3. Capability inventory: The skill can write files to the local filesystem and execute pnpm commands (SKILL.md). 4. Sanitization: There is no evidence of sanitization or filtering of the ingested commit/diff data before processing.
Audit Metadata