pavlo-pr-writer
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs routine text synthesis to format pull request descriptions. It does not initiate network connections, access sensitive system files (e.g., SSH keys, credentials), or execute shell commands.
- [PROMPT_INJECTION]: The skill ingests untrusted data from ticket descriptions and commit messages. While this creates a surface for indirect prompt injection, the skill's only capability is presenting the resulting text via the
show_contenttool, which does not execute the content or grant elevated privileges.
Audit Metadata