The Agent Skills Directory

[SAFE]: The skill fetches issue data (title, body, comments) from GitHub using the official gh CLI. While this external data could theoretically contain malicious instructions (Indirect Prompt Injection), the workflow includes a mandatory user confirmation step (Step 5) before any write actions are performed.
[SAFE]: Command execution is restricted to standard repository investigation tools and the GitHub CLI. No unauthorized network access or external script downloads were detected.
[SAFE]: The shell command for posting comments uses a quoted heredoc (<<'EOF'), which is a security best practice to prevent the shell from interpreting or executing any code that might be contained within the generated response plan.

gh-issue-planner