create-pr-azdo
Pass
Audited by Gen Agent Trust Hub on Jun 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local commands using
gitand theazCLI with theazure-devopsextension. It specifically utilizes a repository-provided script atscripts/pr-azdo.shto handle PR creation. - [COMMAND_EXECUTION]: A vulnerability surface for indirect prompt injection exists because user-controlled strings (PR title and description) are passed as arguments to shell commands.
- Ingestion points: User-provided text for the PR title and description fields.
- Boundary markers: None present to distinguish instructions from user-provided data.
- Capability inventory: Shell execution of local scripts (
scripts/pr-azdo.sh) and CLI tools (az,git). - Sanitization: No input validation or escaping is specified for user-provided data before interpolation.
Audit Metadata