create-draft-release-notes
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes standard GitHub CLI (
gh) commands to retrieve, create, and edit releases. These commands are used as intended for repository management and follow a workflow that involves user confirmation. - [COMMAND_EXECUTION]: A local Node.js script (
create-draft-release-notes.mjs) is used to parse and reorganize markdown content. The script uses built-in Node.js modules and does not perform any network operations or unsafe code evaluations. - [DATA_EXFILTRATION]: The skill interacts with GitHub, which is a well-known service. The data processed (commit messages and release notes) is consistent with the skill's stated purpose of managing release documentation and does not involve sensitive local credentials.
Audit Metadata