commit-message-generator
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- Data Exposure & Exfiltration (SAFE): The skill accesses local git repository information via
git statusandgit diff. No network operations or sensitive file access patterns (e.g., SSH keys, AWS credentials) were detected. - Indirect Prompt Injection (LOW):
- Ingestion points: Reads
git diffoutput which can contain content from untrusted sources (e.g., a downloaded file being committed). - Boundary markers: None explicitly defined to separate the diff data from instructions.
- Capability inventory: Limited to read-only git commands (
status,diff). No automated write or network capabilities. - Sanitization: Not present. However, since the skill only provides suggestions and cannot execute destructive commands, the risk is negligible.
- Command Execution (SAFE): The skill instructions explicitly forbid the agent from performing
git commitorgit push. It only suggests the command string to the user for manual execution.
Audit Metadata