commiter
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill instructs the agent to execute
git commit -mcommands based on generated text. This is the primary function of the skill, and the risk is considered low given the intended use case. - [PROMPT_INJECTION] (LOW): Vulnerable to Indirect Prompt Injection (Category 8) because it analyzes external code changes to generate content.
- Ingestion points: The agent is instructed to "Analyze the changes" in modified files (
SKILL.md). - Boundary markers: No explicit markers are used to separate code content from instructions in the agent's context.
- Capability inventory: The skill possesses the capability to execute shell commands via
git commit(SKILL.md). - Sanitization: No sanitization or validation of the code content is performed before generating the commit message.
Audit Metadata