Skills
skills/mergifyio/mergify-cli/mergify-config/Gen Agent Trust Hub

mergify-config

Pass

Audited by Gen Agent Trust Hub on Apr 24, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFEPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Executes the mergify CLI tool to perform configuration validation and pull request simulation activities.
  • [EXTERNAL_DOWNLOADS]: Fetches the official JSON configuration schema and documentation from docs.mergify.com, and references the installation of the mergify-cli package via standard package managers.
  • [CREDENTIALS_UNSAFE]: Supports the use of MERGIFY_TOKEN or GITHUB_TOKEN environment variables for authenticated API requests to GitHub and Mergify services.
  • [PROMPT_INJECTION]: The skill processes untrusted pull request data when performing simulations, which presents a surface for indirect prompt injection.
  • Ingestion points: Pull request content and metadata fetched from PULL_REQUEST_URL as described in SKILL.md.
  • Boundary markers: Absent; the skill does not define specific delimiters for isolating the simulation output.
  • Capability inventory: Invokes the mergify CLI for simulation and validation tasks in SKILL.md.
  • Sanitization: Absent; the instructions do not specify validation or filtering of the fetched pull request content.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 24, 2026, 11:09 PM
Security Audit — agent-trust-hub — mergify-config