create-pr
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill automates a legitimate development workflow for GitHub Pull Requests. It includes proactive security measures such as scanning the diff for hardcoded secrets before submission.
- [COMMAND_EXECUTION]: Executes standard development and version control commands including
git,gh,npm,pytest, andruff. These executions are limited to the user's project context and are necessary for the skill's stated purpose of PR validation. - [EXTERNAL_DOWNLOADS]: Interacts with GitHub via the official CLI. It references the author's own repository (
github.com/yonatangross/orchestkit) for metadata and templates, which is consistent with the vendor identity.
Audit Metadata