Skills
skills/smartworkx/dev-context/create-issue/Gen Agent Trust Hub

create-issue

Pass

Audited by Gen Agent Trust Hub on Mar 2, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its data-handling practices.
  • Ingestion points: Data enters the agent's context from the local codebase (via 'Explore codebase for context') and from external GitHub issues (via gh issue view).
  • Boundary markers: The skill lacks delimiters or 'ignore' instructions to prevent the agent from being influenced by malicious instructions embedded in the files it reads or the issues it fetches.
  • Capability inventory: The skill utilizes the Bash, Read, and gh CLI tools, which provide the ability to read files, execute shell commands, and transmit data externally.
  • Sanitization: There is no evidence of sanitization or filtering applied to external content before it is interpolated into the agent's reasoning or output.
  • [COMMAND_EXECUTION]: The skill executes shell commands via the Bash tool to interact with the GitHub CLI (gh). It performs actions such as gh issue create, gh issue view, and gh issue edit. These commands are standard for the skill's intended purpose and target a well-known, trusted service.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 2, 2026, 03:53 AM