writing-github-pr-descriptions
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Uses the official GitHub CLI (
gh) to programmatically interact with the GitHub REST API for Pull Request management. - [PROMPT_INJECTION]: The documentation specifically instructs users to use single-quoted heredocs (
<<'EOF') when handling Pull Request content. This is a security best practice that prevents the shell from interpreting or executing variables and commands contained within the PR body text, effectively neutralizing potential injection attacks through content interpolation.
Audit Metadata