find-reviewable-pr
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Command Execution: The skill includes a PowerShell script (
query-reviewable-prs.ps1) that executes GitHub CLI commands usingInvoke-Expression. This is used to dynamically construct and run queries for pull requests based on repository milestones and project board status. While this is a dynamic execution pattern, it is a functional requirement for implementing the skill's prioritization logic and operates within the context of the user's authenticated environment.\n- External Data Retrieval: The script performs network operations using the authenticated GitHub CLI (gh) to fetch pull request metadata from specific repositories (dotnet/mauianddotnet/docs-maui). This is the intended purpose of the skill and uses the established GitHub API.\n- Indirect Prompt Injection Surface: The skill processes and presents pull request titles and labels, which are externally provided data from contributors. \n - Ingestion points: PR metadata is fetched from GitHub via the PowerShell script.\n
- Boundary markers: The instructions do not currently specify the use of strict delimiters (like XML tags or backticks) when the agent presents PR titles to the user.\n
- Capability inventory: The skill primarily uses the
ghtool for repository queries and does not perform file-write or further subprocess calls based on the PR data.\n - Sanitization: The script implements basic escaping for single quotes within its GraphQL query construction to prevent command malformation.
Audit Metadata