dotnet-github-releases
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill demonstrates workflows for extracting content from local files like
CHANGELOG.mdto populate release notes. This ingestion point creates an indirect prompt injection surface where instructions embedded in those files could influence agent behavior. - Ingestion points:
CHANGELOG.mdandrelease-notes.md(read viasedorcat). - Boundary markers: Extracted content is utilized as command-line arguments or API request body strings.
- Capability inventory: Includes
gh release create,gh release upload, andcurl(API) which provide network access and data modification capabilities. - Sanitization: No explicit sanitization or validation of the file-sourced content is demonstrated.
- [COMMAND_EXECUTION]: Provides various examples of using the
ghCLI,dotnetCLI, andcurlfor standard release creation, build automation, and artifact management. - [EXTERNAL_DOWNLOADS]: Mentions well-known tools and services for release automation, including the
softprops/action-gh-releaseGitHub Action and thegit-cliffchangelog generator.
Audit Metadata