Skills
skills/lobehub/lobe-chat/source-command-dedupe/Gen Agent Trust Hub

source-command-dedupe

Pass

Audited by Gen Agent Trust Hub on May 20, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes external, untrusted data from GitHub issues, which represents an indirect prompt injection surface where malicious instructions in an issue could influence the agent's summarization or filtering steps. \n
  • Ingestion points: The skill reads GitHub issue content via the gh command-line tool (SKILL.md). \n
  • Boundary markers: No specific delimiters or instructions to ignore embedded commands are specified for the ingested content. \n
  • Capability inventory: The agent has permissions to read repository data, perform searches, and post comments via the gh tool (SKILL.md). \n
  • Sanitization: There is no evidence of sanitization or validation of the fetched issue content before it is passed to agents for processing.
Audit Metadata
Risk Level
SAFE
Analyzed
May 20, 2026, 08:33 PM
Security Audit — agent-trust-hub — source-command-dedupe