Skills
skills/vimkim/my-cubrid-skills/cubrid-pr-create/Gen Agent Trust Hub

cubrid-pr-create

Pass

Audited by Gen Agent Trust Hub on Apr 8, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses git to inspect repository status, branches, and remotes, and to push changes to forks.
  • [COMMAND_EXECUTION]: Utilizes the GitHub CLI (gh pr create) to automate the submission of pull requests.
  • [PROMPT_INJECTION]: The skill processes untrusted data from repository diffs and commit messages to generate PR descriptions (Indirect Prompt Injection surface). This is mitigated by the design which requires showing the draft to the user and obtaining explicit confirmation before the PR is created.
  • [DATA_EXFILTRATION]: Interacts with jira.cubrid.org and GitHub. These operations are limited to project-specific metadata and are consistent with the skill's stated purpose.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 8, 2026, 03:59 AM