create-pr
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses official Git and GitHub CLI (
gh) commands to interact with standard developer infrastructure. No unauthorized network access or sensitive file exposure was detected. - [COMMAND_EXECUTION]: The shell commands used (
git diff,git log,git push,gh pr create) are appropriate for the skill's stated purpose of automating PR workflows. - [PROMPT_INJECTION]: The skill processes untrusted input in the form of repository code diffs and commit messages. While this is an ingestion surface for Indirect Prompt Injection, the skill's logic is constrained to generating PR documentation, and no high-risk capabilities are exposed to this data.
- Ingestion points: Repository diffs and commit logs (SKILL.md Step 1).
- Boundary markers: None.
- Capability inventory: Git push and GitHub PR creation (SKILL.md Step 4).
- Sanitization: None.
Audit Metadata