Skills
skills/avvale/aurora-front/conventional-commits/Gen Agent Trust Hub

conventional-commits

Pass

Audited by Gen Agent Trust Hub on Mar 2, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to use standard Git CLI commands, such as git status, git diff, git add, and git commit, to manage local repository changes.
  • [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface because it involves analyzing untrusted external data (git diffs and status) to generate commit messages.
  • Ingestion points: The output of git status, git diff, and git diff --staged are processed in the workflow described in SKILL.md.
  • Boundary markers: There are no explicit delimiters or instructions provided to the agent to treat diff content as untrusted or to disregard potential instructions within that content.
  • Capability inventory: The skill utilizes shell command execution via the Git command-line interface.
  • Sanitization: No sanitization of the code content or diff output is performed before analysis.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 2, 2026, 08:50 AM