update-pr-description

Pass

Audited by Gen Agent Trust Hub on Jun 27, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Uses the GitHub CLI (gh) to retrieve pull request information and apply edits. The skill calls gh pr view, gh pr diff, and gh pr edit to manage the PR lifecycle.
  • [PROMPT_INJECTION]: Ingests untrusted data from PR titles, descriptions, and code diffs (SKILL.md) which could contain malicious instructions. It lacks explicit boundary markers or sanitization. The skill uses gh pr edit to modify metadata based on this input, though it instructs the agent to ask the user before applying changes.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 27, 2026, 12:30 PM
Security Audit — agent-trust-hub — update-pr-description