git-workflow
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill primarily consists of documentation and best practices for version control workflows.
- [COMMAND_EXECUTION] (SAFE): Documentation includes common Git bash examples (e.g.,
git checkout,git pull) intended for user guidance. No automated or hidden command execution was found in the provided scripts. - [Indirect Prompt Injection] (SAFE): The
commit_message.pyscript handles untrusted user input (commit descriptions). However, a capability inventory shows the script has no dangerous functions (no subprocesses, no file writes, no network access), rendering the surface non-exploitable. - [EXTERNAL_DOWNLOADS] (SAFE): No external dependencies or remote scripts are downloaded or referenced in the skill or its associated files.
Audit Metadata