Skills
skills/andresnator/agents-orchestrator/sdd-issue/Gen Agent Trust Hub

sdd-issue

Pass

Audited by Gen Agent Trust Hub on Apr 13, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the GitHub CLI (gh) to manage issues. It executes commands such as gh issue list, gh issue view, gh issue create, and gh issue edit. These are standard and documented uses of the tool required for the skill's functionality.
  • [EXTERNAL_DOWNLOADS]: Fetches existing issue data from GitHub via the gh issue view command during the enrichment workflow. This content is used as context for the agent to fill the SDD template.
  • [PROMPT_INJECTION]: The skill identifies as an entry point for an automated 'SDD orchestrator' cycle, which introduces a surface for indirect prompt injection if malicious content is present in the source GitHub issues.
  • Ingestion points: Untrusted data enters the context via gh issue view when enriching existing issues.
  • Boundary markers: Not present; the template does not use specific delimiters or warnings to ignore instructions found within the ingested issue body.
  • Capability inventory: The skill has capabilities to write and modify content on GitHub through the gh issue create and gh issue edit commands.
  • Sanitization: No explicit sanitization or content validation is performed on the data retrieved from external issues.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 13, 2026, 07:44 PM
Security Audit — agent-trust-hub — sdd-issue