to-issues
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No evidence of instructions attempting to bypass safety protocols or override agent behavior was found.
- [DATA_EXFILTRATION]: No patterns of data exfiltration or hardcoded credentials were detected. The skill interacts exclusively with the local codebase and the project's specified issue tracker as part of its intended function.
- [REMOTE_CODE_EXECUTION]: No remote code execution patterns, unauthorized script downloads, or suspicious package installations were identified.
- [INDIRECT_PROMPT_INJECTION]: The skill processes external data from issue trackers and project codebases, which represents an ingestion surface for indirect instructions.
- Ingestion points: Reads issue descriptions, comments, and source code files.
- Boundary markers: Absent; there are no specific delimiters or instructions to ignore embedded commands within the ingested data.
- Capability inventory: The skill uses tools to read and write to issue trackers and to explore the local file system.
- Sanitization: No explicit validation or escaping of the content retrieved from external sources is specified.
Audit Metadata