Skills
skills/automindtechnologie-jpg/ultimate-skill.md/git-pushing/Gen Agent Trust Hub

git-pushing

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • COMMAND_EXECUTION (LOW): Potential shell command injection in scripts/smart_commit.sh.
  • Evidence: The script uses git commit -m "$MESSAGE" to create commits. Because the variable is wrapped in double quotes rather than single quotes, the shell will evaluate any command substitutions (e.g., $(...) or backticks) contained within the user-provided message string.
  • Sanitization: There is no input validation or escaping performed on the $MESSAGE variable before it is passed to the shell command.
  • DATA_EXFILTRATION (SAFE): The script pushes code to the origin remote. While this involves data transfer, it is the primary stated purpose of the skill and is triggered by explicit user request.
  • EXTERNAL_DOWNLOADS (SAFE): No external dependencies or remote scripts are downloaded during execution.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:44 PM