Skills
skills/sharex/xerahs/sync-xips/Gen Agent Trust Hub

sync-xips

Pass

Audited by Gen Agent Trust Hub on Apr 27, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the GitHub CLI (gh) to list, create, and edit issues on the ShareX/XerahS repository. These are standard operations for its documented purpose.
  • [COMMAND_EXECUTION]: Automated scripts (sync-from-github.ps1, merge-old-xips.ps1, etc.) perform local file system operations, including reading and writing markdown files in the docs/proposals/xip/ directory.
  • [PROMPT_INJECTION]: The skill processes untrusted data from GitHub issue bodies and titles, establishing an indirect prompt injection surface. 1. Ingestion points: External issue content retrieved via gh issue list. 2. Boundary markers: No delimiters are used to wrap processed content. 3. Capability inventory: Includes the ability to modify GitHub issues and write local files. 4. Sanitization: Limited to filename slugification; issue bodies are processed without content sanitization.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 27, 2026, 07:20 PM
Security Audit — agent-trust-hub — sync-xips