skill-git-workflow
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill incorporates explicit safety checks to verify that sensitive files such as
.envor credential files are not accidentally staged before a commit is created. - [SAFE]: The execution logic uses the shell 'EOF' heredoc pattern (
cat <<'EOF') for commit messages, which is a best practice to prevent command injection or unintended variable expansion from the commit message content. - [SAFE]: The skill explicitly prohibits dangerous git operations like
git push --forceorgit reset --hard(without explicit request), reducing the risk of accidental data loss or state corruption. - [SAFE]: The git operations are scoped to specific directories (
specs/,Logos/,src/), following the principle of least privilege for automated operations.
Audit Metadata