Skills
skills/asiaostrich/universal-dev-standards/changelog/Gen Agent Trust Hub

changelog

Pass

Audited by Gen Agent Trust Hub on Mar 9, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: Uses the Bash(git log:*) tool to access commit logs, which is a restricted command necessary for the skill's operation.\n- [PROMPT_INJECTION]: The skill processes untrusted commit messages which provides a surface for indirect prompt injection.\n
  • Ingestion points: Git commit history (git log), CHANGELOG.md, and CONTRIBUTING.md (identified in SKILL.md).\n
  • Boundary markers: The skill does not define specific delimiters or security instructions to prevent the agent from following commands embedded in commit messages.\n
  • Capability inventory: The skill is granted Read, Write, Grep, and Bash(git log:*) tools, which could be misused if a malicious instruction is followed (identified in SKILL.md).\n
  • Sanitization: No sanitization or filtering of external data from the git log is implemented.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 9, 2026, 03:30 PM