git-create-repo
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill uses the official GitHub CLI tool to perform repository management tasks, which is an expected and secure practice.
- [PROMPT_INJECTION]: Analysis identified a surface for indirect prompt injection (command and parameter injection) through the user-provided repository name. 1. Ingestion points: The parameter in SKILL.md. 2. Boundary markers: None present. 3. Capability inventory: Execution of gh commands via the Bash tool. 4. Sanitization: No explicit sanitization or validation logic is defined in the instructions.
Audit Metadata