pr-green
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local repository scripts at
./scripts/ci-check.shand the GitHub CLI (gh) to perform CI checks, analyze failure logs, and manage pull request states. - [PROMPT_INJECTION]: The skill represents a surface for indirect prompt injection as it ingests and acts upon untrusted data from external sources. * Ingestion points: Review comments and issue descriptions fetched via
gh apiandgh pr view. * Boundary markers: No delimiters or specific instructions to ignore embedded commands are present in the prompt. * Capability inventory: The agent can execute local shell scripts, commit code changes, and push to the remote repository. * Sanitization: No explicit sanitization or validation of the fetched comment text is performed before processing.
Audit Metadata