skill-git-workflow
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill includes a dedicated safety check phase that prevents the staging of sensitive files such as .env and credential files, mitigating accidental data exposure.
- [COMMAND_EXECUTION]: Git operations are performed via Bash, restricted to the git namespace. The execution logic uses single-quoted heredocs ('EOF') for commit messages, which is a best practice to prevent shell interpolation and command injection.
- [SAFE]: The skill explicitly prohibits high-risk git operations such as force pushing, hard resets, and interactive rebasing, enforcing a safe development environment.
- [PROMPT_INJECTION]: Indirect injection surface analysis (Category 8):
- Ingestion points: Task identifiers, file paths, and message templates are used to build command arguments.
- Boundary markers: Single-quoted heredocs encapsulate the commit message content.
- Capability inventory: Git staging, status checking, and committing via Bash tool.
- Sanitization: Includes pattern matching for sensitive files and pre-commit verification logic.
Audit Metadata