session-init
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses Bash to perform environment checks, such as verifying Git status (
git status -sb), checking file lengths (wc -l), and reading project-specific task files. These are standard operations for environment initialization. - [DATA_EXPOSURE]: Accesses local files including
~/.claude-mem/settings.jsonand.claude/memory/session-log.mdto determine tool modes and session history. This access is consistent with the skill's stated purpose of context restoration and environment verification. - [PROMPT_INJECTION]: The skill processes content from files like
Plans.mdandAGENTS.md. While this ingestion of external data constitutes an indirect prompt injection surface, the risk is minimal as the content is used only for generating status summaries without high-privilege execution of the ingested data.
Audit Metadata