Skills
skills/adonis0123/adonis-skills/commit/Gen Agent Trust Hub

commit

Pass

Audited by Gen Agent Trust Hub on Apr 2, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses local shell commands (git status, git diff --cached, git commit) to perform its primary functions. These operations are limited to the local repository context and are necessary for the skill's stated purpose of managing commits.
  • [PROMPT_INJECTION]: The skill is subject to indirect prompt injection as it ingests untrusted data from the local file system during code analysis.
  • Ingestion points: Reads code changes via git diff --cached (documented in SKILL.md, Step 2).
  • Boundary markers: None identified; the agent is instructed to analyze the raw diff output.
  • Capability inventory: Can execute git commit (documented in SKILL.md, Step 4), which could be misused if an injection in the diff content influences the agent to alter the commit message or command.
  • Sanitization: No specific sanitization or escaping of the diff content is mentioned before the analysis phase.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 2, 2026, 02:07 PM