using-jira-cli

Pass

Audited by Gen Agent Trust Hub on Jul 6, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [SAFE]: The skill defines a set of commands for interacting with Jira via an external CLI tool. The safety rules explicitly advise against echoing tokens or storing secrets in the skill itself. The skill also explicitly commands to check help for commands and avoid interactive UI in automated runs.\n- [EXTERNAL_DOWNLOADS]: The skill references the official documentation for jira-cli on GitHub for installation instructions. This is a reference to a reputable open-source project and does not involve direct execution of untrusted remote code.\n- [PROMPT_INJECTION]: The skill processes data from external Jira issues and comments, which constitutes a potential surface for indirect prompt injection. The skill mitigates this by requiring explicit human confirmation before any state-changing operations.\n
  • Ingestion points: Ticket descriptions and comments retrieved via jira issue view and jira issue list (SKILL.md).\n
  • Boundary markers: None explicitly defined for external content.\n
  • Capability inventory: Command execution for creating, editing, and deleting Jira resources (SKILL.md).\n
  • Sanitization: Relies on manual user confirmation for all mutations as specified in the safety rules.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 6, 2026, 05:19 AM
Security Audit — agent-trust-hub — using-jira-cli