github
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The documentation provides instructions to download the orbit CLI tool from the author's GitHub repository.- [REMOTE_CODE_EXECUTION]: The installation process involves piping a remote script directly to a shell (
curl | sh). The script is hosted athttps://raw.githubusercontent.com/jorgemuza/orbit/main/install.sh. This is identified as a vendor-owned resource used for standard tool installation.- [COMMAND_EXECUTION]: The skill uses shell commands via theorbitCLI to interact with GitHub APIs, managing repositories, secrets, and workflows.- [PROMPT_INJECTION]: The skill handles untrusted data from GitHub (e.g., PR titles, comments, and issue bodies), creating a surface for indirect prompt injection. - Ingestion points: Data retrieved from GitHub PRs, issues, and commits.
- Boundary markers: None defined in the prompt instructions.
- Capability inventory: Shell command execution via the orbit CLI for both reading and writing to GitHub.
- Sanitization: No explicit validation or escaping of external content is present.
Audit Metadata