make-pr
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill is a standard automation utility for repository management. It does not access sensitive credentials or perform unauthorized network operations.- [COMMAND_EXECUTION]: The skill utilizes
git logandgit difffor context gathering andgh pr createfor submitting the pull request. These are expected tools for the defined workflow.- [PROMPT_INJECTION]: The skill processes untrusted data from git logs and diffs, which constitutes a surface for indirect prompt injection. * Ingestion points: Output fromgit logandgit diffcommands (SKILL.md). * Boundary markers: Not explicitly provided in the instructions. * Capability inventory: Write access to the repository and network access via the GitHub CLI. * Sanitization: No specific sanitization or filtering of the ingested data is described.
Audit Metadata