handoff
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes several bash commands to inspect the local development environment, including
git rev-parse,git status,git log,git stash list, andpwd. This information is used to populate a session handoff template with precise technical details. - [COMMAND_EXECUTION]: It uses shell commands to create a local storage directory for handoff logs at
.claude/handoffusingmkdir -p. - [DATA_EXFILTRATION]: The skill collects absolute file paths and git metadata (branches, status, commit history) to include in the handoff prompt. While this information is displayed to the user for manual transfer, there are no automated network operations detected that would send this data to an external server.
- [PROMPT_INJECTION]: The skill processes untrusted conversation history and interpolates it into a generated prompt template. While it uses markdown headers as boundary markers, it lacks explicit sanitization or filtering for embedded instructions, potentially allowing malicious content to persist across sessions if the original conversation contained injections.
Audit Metadata