changelog-generator
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill is a set of guidelines and examples for changelog generation. No malicious patterns, unauthorized data access, or suspicious network activities were identified.
- [NO_CODE]: No executable code, scripts, or binary files are provided with this skill, eliminating typical vectors for code execution or privilege escalation.
- [PROMPT_INJECTION]: The skill is designed to process external git commit history, which constitutes an indirect prompt injection surface.
- Ingestion points: Git commit messages retrieved via git commands (SKILL.md).
- Boundary markers: None provided to isolate untrusted commit data from agent instructions.
- Capability inventory: The skill performs text analysis and formatting; no scripts or external network operations are present.
- Sanitization: No validation or sanitization of commit messages is implemented.
Audit Metadata