iterate-pr
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill's scripts utilize subprocess.run to invoke the GitHub CLI (gh) for operations such as viewing PR status, fetching check logs, and submitting review replies. This behavior is necessary for the skill's core functionality and targets official GitHub interfaces.
- [INDIRECT_PROMPT_INJECTION]: The skill processes external data in the form of PR comments and review feedback. It retrieves this information via the GitHub API and uses it to guide the agent's code modification workflow. While this constitutes an untrusted data surface, the risk is managed through a structured workflow that includes user selection for lower-priority items.
- [EXTERNAL_DOWNLOADS]: The skill documentation references the installation of well-known developer tools such as the GitHub CLI and the uv package manager from their official sources. These are standard industry tools and their use is consistent with the skill's purpose.
Audit Metadata