Skills
skills/seckatie/kmtools/jira-cli/Gen Agent Trust Hub

jira-cli

Pass

Audited by Gen Agent Trust Hub on Mar 11, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Downloads the jira-cli binary from its GitHub releases page (file: SKILL.md).
  • [COMMAND_EXECUTION]: Instructs the use of sudo to move the binary to a system directory and the source command to load authentication tokens from ~/.envrc (file: SKILL.md).
  • [PROMPT_INJECTION]: Susceptible to indirect prompt injection from externally controlled data in Jira tickets (file: SKILL.md).
  • Ingestion points: Ticket descriptions and comments processed via jira issue view and jira issue list commands.
  • Boundary markers: Absent; ticket content is presented directly to the agent without delimiters.
  • Capability inventory: Subprocess execution of jira-cli commands for ticket creation, modification, and deletion.
  • Sanitization: No sanitization or validation of the retrieved Jira ticket content is performed.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 11, 2026, 01:25 PM