Skills
skills/aiskillstore/marketplace/pr-template-generator/Gen Agent Trust Hub

pr-template-generator

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted external data which creates a surface for indirect prompt injection attacks. \n
  • Ingestion points: In the 'Analyze Changes' section of SKILL.md, the agent is instructed to review git diff and commit history. This data can contain malicious instructions embedded in code comments or commit messages. \n
  • Boundary markers: The instructions lack specific delimiters or system-level warnings to the agent to treat content within the git data as data rather than instructions. \n
  • Capability inventory: The skill's capabilities are limited to text generation and documentation. It does not request tools for network access, file system writes, or shell execution. \n
  • Sanitization: No sanitization or filtering logic is defined for the content extracted from the git environment. \n- [NO_CODE]: The skill consists entirely of Markdown instructions and a metadata JSON file. No executable scripts (.py, .js, .sh, etc.) are included in the skill package.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 07:19 AM
Security Audit — agent-trust-hub — pr-template-generator