Skills
skills/cfircoo/claude-code-toolkit/git/Gen Agent Trust Hub

git

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it analyzes untrusted data from the repository (code changes and logs) to draft messages. \n
  • Ingestion points: Repository content is ingested via git diff, git status, and git log in the commit.md and pr.md workflows. \n
  • Boundary markers: There are no explicit markers or instructions to ignore potential commands embedded within the diffs or logs being analyzed. \n
  • Capability inventory: The skill can perform git commit, git push, and gh pr create operations. \n
  • Sanitization: The use of quoted HEREDOCs (cat <<'EOF') effectively prevents the generated content from triggering shell command injection.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 12:22 AM