Skills
skills/dfitchett/agent-skills/pr-description/Gen Agent Trust Hub

pr-description

Pass

Audited by Gen Agent Trust Hub on Mar 31, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses standard development tools including git and the GitHub CLI (gh) to retrieve branch metadata and automate pull request creation.- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it summarizes untrusted content from commit messages and diffs.
  • Ingestion points: Reads from git log, git diff, and repository-hosted PR templates.
  • Boundary markers: The instructions do not specify the use of delimiters or markers to separate untrusted git data from agent instructions.
  • Capability inventory: Includes the ability to write files to the local file system and perform network-enabled actions via git push and gh pr create.
  • Sanitization: No sanitization or filtering of commit messages or diff outputs is implemented.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 31, 2026, 05:26 PM