jira-epic-to-stories
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill executes the 'jira' binary to view and create issues using Python's 'subprocess.Popen' with a list of arguments. This approach is secure against shell injection vulnerabilities as it avoids shell interpretation. Evidence found in 'epic-to-stories.py' and 'SKILL.md'.\n- [EXTERNAL_DOWNLOADS]: The skill depends on the 'ankitpokhrel/jira-cli' open-source tool. While this is an external dependency, it is a well-known service for JIRA automation. Specified in 'SKILL.md'.
Audit Metadata