Skills
skills/2ykwang/agent-skills/github-review-check-duplicate/Gen Agent Trust Hub

github-review-check-duplicate

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill makes extensive use of the GitHub CLI (gh) to view issues, search for similar items, and query the GitHub API for timeline events. These operations are core to the skill's functionality for repository management.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it retrieves and analyzes content authored by external users (issue titles, bodies, and comments).
  • Ingestion points: Untrusted data enters the agent context through gh issue view and gh search commands in SKILL.md.
  • Boundary markers: No specific delimiters or safety instructions are provided to help the agent distinguish between its own instructions and the content being analyzed.
  • Capability inventory: The agent has the capability to execute various subcommands of the gh tool, including API calls, across all steps in SKILL.md.
  • Sanitization: The instructions do not include steps to sanitize or validate the content fetched from GitHub before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 10:45 AM
Security Audit — agent-trust-hub — github-review-check-duplicate