release-checklist
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns or unauthorized behaviors were detected. The skill follows industry standard best practices for release management and repository hygiene.\n- [COMMAND_EXECUTION]: The skill utilizes the Bash tool to perform local development tasks such as building the project (npm run build), running tests (npm test), and managing version control (git). These operations are consistent with the skill's stated purpose and include human-in-the-loop checkpoints for critical actions like pushing to remote branches.\n- [PROMPT_INJECTION]: The skill processes untrusted project data, creating a surface for indirect prompt injection.\n
- Ingestion points: Local project files including package.json, CLAUDE.md, and CHANGELOG.md are read during the version verification and changelog check steps.\n
- Boundary markers: Absent; instructions do not explicitly warn the agent to ignore potentially malicious instructions embedded within these data files.\n
- Capability inventory: The agent has access to the Bash tool, which could be leveraged if the agent were influenced by malicious data in the read files.\n
- Sanitization: Absent; the content of the project files is read and processed (via grep) without explicit sanitization, though the risk is mitigated by the highly structured nature of the tasks.
Audit Metadata