pr-merge-prep
Warn
Audited by Socket on May 1, 2026
1 alert found:
SecuritySecuritySKILL.md
MEDIUMSecurityMEDIUM
SKILL.md
SUSPICIOUS: the stated purpose matches PR maintenance, but the skill grants an agent broad unattended authority to execute repo-derived commands, modify code, and take public GitHub actions based on untrusted PR/CI content. No clear malware or credential theft is present, but the autonomy and prompt-injection surface make it high risk for safe deployment.
Confidence: 86%Severity: 79%
Audit Metadata