commit
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE] (SAFE): The skill instructions do not contain any malicious patterns, hardcoded credentials, or unauthorized network requests.
- [Indirect Prompt Injection] (LOW): The skill is susceptible to indirect prompt injection through the data it processes. 1. Ingestion points: Staged git changes (SKILL.md). 2. Boundary markers: Absent; there are no delimiters separating the code diffs from the agent's instructions. 3. Capability inventory: The skill generates text to be used in git commit operations. 4. Sanitization: Absent. While the skill has constraints against adding footers or ads, it remains theoretically possible for instructions hidden within staged code to influence the final commit message output.
Audit Metadata