Skills
skills/vanilla-bar/kernel/prune/Gen Agent Trust Hub

prune

Pass

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill handles branch names and PR metadata which presents an indirect prompt injection surface.
  • Ingestion points: Data is retrieved from git branch and gh pr list in SKILL.md.
  • Boundary markers: No explicit markers are used to separate untrusted data from instructions.
  • Capability inventory: The skill executes shell commands via Git and uses the AskUserQuestion tool for confirmation.
  • Sanitization: Branch names are used directly in shell commands without sanitization.
  • [COMMAND_EXECUTION]: The skill executes git and gh commands to manage and delete branches. These actions are primary to the skill's purpose and require user approval.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 13, 2026, 12:05 PM