update-pr-description
Pass
Audited by Gen Agent Trust Hub on Jun 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Uses the GitHub CLI (
gh) to retrieve pull request information and apply edits. The skill callsgh pr view,gh pr diff, andgh pr editto manage the PR lifecycle. - [PROMPT_INJECTION]: Ingests untrusted data from PR titles, descriptions, and code diffs (SKILL.md) which could contain malicious instructions. It lacks explicit boundary markers or sanitization. The skill uses
gh pr editto modify metadata based on this input, though it instructs the agent to ask the user before applying changes.
Audit Metadata