commit
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool to execute Git and GitHub CLI commands such as git checkout, git commit, and gh pr create to manage the software development lifecycle.
- [PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection as it processes user-provided arguments and file changes. Mitigation is provided through the following: (1) Ingestion points: $ARGUMENTS variable and git diff output (SKILL.md). (2) Boundary markers: The agent is instructed to use quoted heredocs (cat <<'EOF') for variable interpolation. (3) Capability inventory: Bash tool used for git and gh commands (SKILL.md). (4) Sanitization: Quoted heredocs prevent shell expansion and execution of instructions contained within the input.
- [DATA_EXFILTRATION]: The skill mitigates the risk of accidental data exposure by including explicit instructions to exclude local settings and secret files from being staged or committed.
Audit Metadata