quality-gate
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a standard orchestration tool for quality assurance workflows. Its behavior is consistent with its stated purpose of running linting, convention checks, and PR reviews.
- [SAFE]: Command execution is limited to standard development tools (
git,gh,grep) and local scripts (conventions.py) relevant to the repository context. - [SAFE]: Network activity is restricted to official GitHub API interactions for posting reviews and fetching diffs, which is expected functionality for a PR-review mode.
- [SAFE]: The skill processes external data (diffs and PR content), which is a necessary surface for code review tasks. While this is a theoretical entry point for indirect instructions, the skill handles it using standard orchestration patterns without evidence of unsafe evaluation.
Audit Metadata