The Agent Skills Directory

[COMMAND_EXECUTION] (LOW): The skill executes local shell commands including git status, git diff, git add, and git commit. It also suggests running environment-specific validation tools like lint or tests. These are essential to the skill's primary purpose but grant the agent the ability to run code on the host system.
[PROMPT_INJECTION] (LOW): Category 8: Indirect Prompt Injection. The skill is vulnerable to instructions embedded within the code it reviews. Ingestion points: The output of git diff and file contents within the working directory. Boundary markers: No specific delimiters are used to wrap the code content to distinguish it from instructions. Capability inventory: The agent can write to files (applying fixes), stage changes, and execute validation commands (tests/lint). Sanitization: No explicit sanitization or instruction-filtering is performed on the ingested code.
[SAFE]: The skill includes a mandatory 'Approval Gate' (Step 6), requiring explicit user confirmation before staging or committing changes, which significantly mitigates the risk of unauthorized actions.

code-review-and-commit