pr-comment-resolver
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection due to its core functionality of processing external review comments.
- Ingestion points: Pull request comments and code review feedback provided via the user prompt.
- Boundary markers: Absent. The instructions do not specify any delimiters or warnings to prevent the agent from obeying instructions embedded within the processed comments.
- Capability inventory: The skill is explicitly authorized to implement changes, which involves file system writes and code modification across the repository.
- Sanitization: There is no mention of sanitizing, validating, or filtering the content of the comments before implementation.
Audit Metadata