decompose-branch
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes git commands like git log, git diff, and git commit to manipulate the local repository state. These actions are within the scope of the skill's intended purpose for branch management.
- [PROMPT_INJECTION]: The skill represents an indirect prompt injection surface because it ingests and processes untrusted data from git log and git diff.
- Ingestion points: Git log and diff outputs in Phase 1.
- Boundary markers: The skill does not use explicit delimiters or instructions to ignore content within the diff.
- Capability inventory: Shell access for git command execution.
- Sanitization: No sanitization of the repository data is performed before analysis.
Audit Metadata