Skills
skills/notque/claude-code-toolkit/pr-status/Gen Agent Trust Hub

pr-status

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute standard git and GitHub CLI (gh) commands. These operations are restricted to status-retrieval tasks such as checking branch information, local file changes, and PR metadata.
  • [EXTERNAL_DOWNLOADS]: The skill performs git fetch and queries the GitHub API via the gh CLI. These are standard operations for a git-integrated workflow tool and target a well-known service (GitHub).
  • [PROMPT_INJECTION]: The skill processes untrusted data from GitHub PR titles and comment metadata. This represents an indirect prompt injection surface where external content is interpolated into the agent's report. Ingestion points: gh pr view in SKILL.md. Boundary markers: Absent in Step 8 report template. Capability inventory: Bash tool usage. Sanitization: jq is used for structured extraction, which mitigates simple injection but the final output is free-text.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 05:28 PM