git-commit
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill follows security best practices by including a 'Git Safety Protocol' that explicitly prohibits destructive commands (e.g., --force, hard reset) and the modification of git configurations. It also provides warnings against committing sensitive files like .env or private keys.
- [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute standard git commands like 'git add', 'git commit', and 'git diff'. The provided safety guidelines ensure these tools are used within a restricted, non-destructive scope.
- [PROMPT_INJECTION]: The skill analyzes file diffs (untrusted data) to generate commit messages, which constitutes an indirect prompt injection surface.
- Ingestion points: Data is ingested via 'git diff' and 'git diff --staged' (SKILL.md).
- Boundary markers: Absent; the agent analyzes raw diff output without specific delimiters.
- Capability inventory: Access to the Bash tool allows for file staging and committing.
- Sanitization: No specific sanitization or escaping of diff content is defined.
Audit Metadata