The Agent Skills Directory

Command Execution: The skill utilizes the git diff-tree command to retrieve the list of files changed in a commit. This is a common and appropriate use of Git tools for repository analysis and does not involve external network requests or administrative privilege escalation.
Indirect Prompt Injection Surface: The skill processes output from local command execution (file paths). While this presents a potential surface where filenames could influence agent behavior, the instructions clearly scope the use of this data to classification against a static table, which is a safe and intended use case.

commit-categories