git-workflow
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Facilitates Git repository management by executing commands through the Bash tool.
- [PROMPT_INJECTION]: Contains a potential surface for indirect prompt injection when processing repository metadata.
- Ingestion points: The agent reads untrusted data from the repository via commands like git log and git diff (SKILL.md).
- Boundary markers: No delimiters are used to separate Git output from agent instructions.
- Capability inventory: The agent is authorized to use the Bash tool (SKILL.md).
- Sanitization: The skill does not implement sanitization for data retrieved from the Git repository.
- [SAFE]: Includes references to well-known services such as GitHub for configuration examples.
Audit Metadata