qa
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the GitHub CLI (gh issue create) to automate the creation of bug reports on GitHub, which is the primary function of the skill.\n- [PROMPT_INJECTION]: The skill processes untrusted data from user conversations and project codebase files to generate GitHub issues, creating a surface for indirect prompt injection.\n
- Ingestion points: User descriptions in conversational QA and codebase content from the background 'Explore' agent in SKILL.md.\n
- Boundary markers: The instructions lack explicit delimiters or 'ignore' instructions for embedded data.\n
- Capability inventory: Uses the 'gh' command and a background subagent to explore code.\n
- Sanitization: No explicit validation or sanitization of external content is specified before interpolation into templates.
Audit Metadata