github
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill specifies the installation of the GitHub CLI tool ('gh') via 'apt'. This is a well-known service and the official tool, making it a safe dependency.
- [COMMAND_EXECUTION]: The skill executes standard 'gh' CLI subcommands like 'issue list' and 'pr checks', which are appropriate for its described functionality.
- [PROMPT_INJECTION]: The skill retrieves and processes untrusted data from GitHub (e.g., issue/PR content and logs). Ingestion points: Data from 'gh' CLI outputs enters the agent's context. Boundary markers: None present. Capability inventory: The skill can execute 'gh' CLI commands. Sanitization: Retrieved content is not sanitized before processing. This constitutes a low-risk indirect prompt injection surface inherent to data-integration tools.
Audit Metadata