中文 EN

Scan Report

Scan New Files

Trusted — Risk Score 5/100
Last scan:16 hr ago Rescan
5 /100
GitHub PR Automation Skill
Automates GitHub open-source contributions from finding good first issues to submitting PRs
Legitimate GitHub PR automation skill with fully declared capabilities using standard GitHub CLI and git operations.
Skill NameGitHub PR Automation Skill
Duration28.5s
Enginepi
Safe to install
No security concerns. Skill performs standard GitHub workflow automation with proper documentation.
ResourceDeclaredInferredStatusEvidence
Filesystem WRITE WRITE ✓ Aligned git clone, git checkout, file writes for code implementation
Network READ READ ✓ Aligned gh search, gh api, web search for finding issues
Shell WRITE WRITE ✓ Aligned bash commands for gh, git operations as documented
Skill Invoke NONE NONE No skill chaining declared
Environment NONE NONE No environment variable access observed

File Tree

1 files · 3.7 KB · 150 lines
Markdown 1f · 150L
└─ 📝 SKILL.md Markdown 150L · 3.7 KB

Security Positives

✓ All capabilities fully declared in SKILL.md with examples
✓ Uses official GitHub CLI (gh) for all API operations
✓ No credential harvesting - delegates authentication to gh
✓ No obfuscated code, base64, or suspicious patterns
✓ Respects licenses and attribution policies
✓ Includes fallback for manual PR creation if automation fails
✓ Clean attribution and assisted development declaration