task-valid-review
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes git commands including
git statusandgit diffto verify changes in the local repository. These are standard tools for the skill's purpose. - [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it processes external task descriptions and subtasks. 1. Ingestion points: Task descriptions and subtask lists in SKILL.md. 2. Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present. 3. Capability inventory: Execution of git commands and file system inspection. 4. Sanitization: No sanitization or validation of the ingested task data is performed.
Audit Metadata