jira-update
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Authenticated Session Management. The skill uses a browser-based flow (via Chromium) to handle Jira authentication, which is a secure method for bypassing SSO restrictions without requiring API tokens or manual cookie entry.
- [SAFE]: Human-in-the-Loop Controls. All write operations are gated behind a mandatory
--applyflag. The default dry-run behavior generates audit files inraw/jira-updates/, allowing the user to inspect the exact payload before submission. - [SAFE]: Input Sanitization and Processing. External data from manifest files or Markdown comments is processed through structured JSON parsing and a custom Markdown-to-ADF converter. This prevents the execution of malicious instructions embedded in the processed data.
- [SAFE]: Forensic Recovery. The tool automatically captures the state of an issue before modification (
before.issue.json), providing a reliable way to revert or verify changes if needed.
Audit Metadata