Skills
skills/microsoft/semantic-link-labs/pr-review-comments/Gen Agent Trust Hub

pr-review-comments

Pass

Audited by Gen Agent Trust Hub on May 5, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • Administrative Tool Configuration: The installation instructions utilize sudo to add the official GitHub CLI repository and install the package. This is a standard administrative procedure for managing system-level software on Linux environments.
  • Official Resource Access: The skill fetches a security keyring from cli.github.com, which is the verified domain for the GitHub CLI. Sourcing components from official provider domains is a recommended security practice.
  • Temporary Data Staging: The guide and scripts use the /tmp/ directory to create JSON payloads for the GitHub API. This is a routine method for handling structured data inputs in shell-based workflows.
  • GitHub API Integration: The skill interacts with the GitHub API to manage PR metadata and comments. These operations are performed using the authenticated GitHub CLI, ensuring that actions are scoped to the user's permissions.
Audit Metadata
Risk Level
SAFE
Analyzed
May 5, 2026, 06:17 PM