create-pr
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious activities, obfuscation, or unauthorized data access patterns were identified. The skill's primary function is to read local git data and create a Pull Request via the standard GitHub CLI tool.
- [PROMPT_INJECTION]: The skill was evaluated for indirect prompt injection as it ingests untrusted data from git history. * Ingestion points:
SKILL.md(Step 1: commit messages and diffs). * Boundary markers: Not specified. * Capability inventory:gh pr create(GitHub CLI) for creating remote resources. * Sanitization: None mentioned, however, Step 3 requires explicit user confirmation viaAskUserQuestionbefore the PR is created, which serves as an effective mitigation for automated injection attacks.
Audit Metadata