Skills
skills/kumo-ai/kumo-coding-agent/kumo-pr/Gen Agent Trust Hub

kumo-pr

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Clones the kumo-ai/kumo-coding-agent repository from GitHub to a temporary directory when not already present in the local environment.
  • [COMMAND_EXECUTION]: Executes git commands to manage branches, pull the latest changes, and commit updates with descriptive messages.
  • [COMMAND_EXECUTION]: Utilizes the GitHub CLI (gh) to authenticate, fetch user identity, and programmatically create pull requests with structured bodies.
  • [COMMAND_EXECUTION]: Runs an inline Python script to perform safe validation of YAML configuration files using the secure yaml.safe_load() method.
  • [DATA_EXFILTRATION]: Transmits code modifications and contributor metadata to the vendor's official GitHub repository, which is the intended and transparent function of the skill.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 02:05 AM