skills/pascalorg/editor/open-pr/Gen Agent Trust Hub

open-pr

Pass

Audited by Gen Agent Trust Hub on May 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill automates pull request creation on the vendor's own repository (pascalorg/editor). All network operations via git push and gh pr are directed to this legitimate target.
  • [SAFE]: Shell commands for creating the PR body utilize a single-quoted HEREDOC (cat <<'EOF'), which is a security best practice to prevent shell variable expansion or command injection from the content being processed.
  • [COMMAND_EXECUTION]: The skill executes standard development commands including git, gh, and bun. These are necessary for its primary function of code integration and build verification.
  • [EXTERNAL_DOWNLOADS]: Uses the bun runtime to perform type checking and builds. These are well-known development tasks performed locally to ensure code quality before submission.
Audit Metadata
Risk Level
SAFE
Analyzed
May 18, 2026, 05:29 PM
Security Audit — agent-trust-hub — open-pr