Skills
skills/ajbcoding/claude-skill-eval/moai-foundation-git/Gen Agent Trust Hub

moai-foundation-git

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill leverages the Bash tool to execute Git and GitHub CLI (gh) commands for automated branching, PR management, and repository optimization.- [PROMPT_INJECTION]: A vulnerability surface for indirect prompt injection exists because the skill reads and processes external, untrusted content from Git commit logs and GitHub pull request bodies.
  • Ingestion points: The skill uses gh pr view and git log in reference.md to retrieve data from remote repositories.
  • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the workflows.
  • Capability inventory: The skill utilizes high-privilege operations including merging PRs, deleting branches, and force-pushing.
  • Sanitization: There is no documented validation or sanitization of the remote text before it is presented to or processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 01:07 AM