verify-dependabot-pr
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFE
Full Analysis
- External Data Ingestion Surface: The skill retrieves content from external sources, such as PR descriptions and upstream changelogs, to analyze version updates.
- Context: This is a characteristic of indirect prompt injection surfaces, where untrusted text is introduced into the agent's workflow. However, in this case, the activity is a requirement for the skill's intended goal of auditing dependencies.
- Evidence:
- Ingestion points: Pull request data via
gh pr view, release notes viagh release view, and registry metadata vianpm view. - Boundary markers: The instructions focus on parsing and extracting structured information from these sources.
- Capability inventory: The skill utilizes standard developer tools including
gh,npm,grep, andnode. - Sanitization: No explicit sanitization of the external text is described, which is common for descriptive analysis tasks.
- Local Script Execution: The skill includes an instruction to use
node -efor inspecting local configuration files. - Context: This pattern is used to programmatically parse
pnpm-lock.yamlto identify dependency relationships. It is a standard method for developers to query structured data within their local environment. - Evidence:
node -e "const lock = require('./pnpm-lock.yaml'); ..."in SKILL.md.
Audit Metadata