Skills
skills/hrdtbs/agent-skills/create-pull-request/Gen Agent Trust Hub

create-pull-request

Pass

Audited by Gen Agent Trust Hub on Apr 11, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the gh CLI and git to automate repository tasks and pull request creation.
  • [DATA_EXFILTRATION]: The skill encourages secure development by instructing the agent to check diffs for sensitive information like secrets before submission.
  • [PROMPT_INJECTION]: The skill has an indirect injection surface when reading local pull request templates. 1. Ingestion points: .github/pull_request_template.md. 2. Boundary markers: Absent. 3. Capability inventory: gh pr create (network access). 4. Sanitization: None, though user confirmation is required.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 11, 2026, 05:41 AM
Security Audit — agent-trust-hub — create-pull-request