create-production-pr
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the GitHub CLI (
gh) to perform repository inspection, branch verification, commit comparison, and pull request creation. These are standard operations for managing GitHub workflows and do not involve arbitrary command execution.- [INDIRECT_PROMPT_INJECTION]: The skill processes external data which constitutes an indirect injection surface. - Ingestion points: The skill reads repository-provided Pull Request templates and the titles of merged pull requests fetched via the GitHub API.
- Boundary markers: No explicit delimiters are used to separate the fetched content from the agent's system instructions.
- Capability inventory: The skill possesses the ability to execute GitHub CLI commands and write data to the repository by creating pull requests.
- Sanitization: There is no evidence of sanitization of the fetched PR titles or template content before they are interpolated into the final PR body. This is a low-risk concern as the content is intended for human review in a PR.
Audit Metadata