Skills
skills/michael-menard/monorepo/wt-merge-pr/Gen Agent Trust Hub

wt-merge-pr

Pass

Audited by Gen Agent Trust Hub on Mar 15, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructions define a sequence of shell commands using the 'git' and 'gh' (GitHub CLI) tools to manage worktrees and pull requests. These commands manipulate local filesystem resources and branch references.
  • [PROMPT_INJECTION]: The parameters '{STORY_ID}' and '{PR_NUMBER}' are interpolated into bash commands without sanitization or escaping instructions. This creates a potential for command injection if malicious characters are included in the inputs. This also constitutes an indirect prompt injection surface: 1. Ingestion points: '{STORY_ID}' and '{PR_NUMBER}' parameters in SKILL.md; 2. Boundary markers: Absent; 3. Capability inventory: Subprocess execution via 'git' and 'gh' commands; 4. Sanitization: No input validation is specified.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 15, 2026, 08:35 PM