synthesize
Pass
Audited by Gen Agent Trust Hub on Jul 7, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local shell commands to manage repository state, including writing PR descriptions to temporary files and cleaning up Git worktrees. These operations are confined to the local development environment.
- [SAFE]: All high-privilege VCS operations, such as creating pull requests and managing the merge queue, are performed through the Exarchos MCP server. This design ensures that authentication tokens and VCS-specific logic are managed securely outside of the skill's instructions.
- [SAFE]: The skill implements a strict readiness gate using the
prepare_synthesiscomposite action, which verifies that all tests pass, type checks succeed, and required reviews are complete before proceeding with synthesis. - [SAFE]: Pull request descriptions are subjected to a validation step (
validate_pr_body) to ensure adherence to required structures, reducing the risk of accidental inclusion of sensitive or malformed metadata.
Audit Metadata