The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute several git commands locally, including 'git diff --cached', 'git log', and 'git branch --show-current'. These commands are used to gather context for the PR description.
[PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection. It processes untrusted data from git diffs and commit messages. An attacker could include malicious instructions within a code comment or commit log that the agent might inadvertently follow when analyzing the changes. * Ingestion points: git diff output and commit logs (SKILL.md workflow). * Boundary markers: Absent. The skill does not use specific delimiters or instructions to ignore embedded prompts in the analyzed code. * Capability inventory: Restricted to Read, Glob, Grep, and Bash (for git commands). No network access or file-write capabilities are defined. * Sanitization: Absent. The skill does not sanitize or filter the content of the diffs or commit messages before processing.

create-pr-description