Skills
skills/fandhe-ai/agent-cli-skills/project-update-items/Gen Agent Trust Hub

project-update-items

Warn

Audited by Gen Agent Trust Hub on May 10, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill recommends disabling SSL/TLS certificate verification by setting the GIT_SSL_NO_VERIFY=1 environment variable when running in certain environments. This bypasses critical security checks, allowing for Man-in-the-Middle (MitM) attacks that could lead to the interception of GitHub authentication tokens or sensitive project data.
  • [PROMPT_INJECTION]: The skill processes external data from GitHub Project items, making it susceptible to indirect prompt injection attacks.
  • Ingestion points: Item list data retrieved from GitHub in Step 3 via the gh project item-list command.
  • Boundary markers: Includes a manual confirmation step in Step 4 to allow users to verify changes before they are applied.
  • Capability inventory: Executes project item updates using the gh project item-edit command in Step 5.
  • Sanitization: No explicit sanitization or data validation is performed on the retrieved item content before it is processed or displayed in the confirmation list.
Audit Metadata
Risk Level
MEDIUM
Analyzed
May 10, 2026, 04:00 PM