rewrite-history
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill performs various Git operations to rewrite branch history, including branch creation, diff analysis, and history replacement. Safety is managed through the creation of a timestamped backup branch and a non-negotiable byte-identical verification check.
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it interprets untrusted Git diff data to structure new commits and generate commit messages.
- Ingestion points: Git diffs between the working branch and the main branch.
- Boundary markers: No specific delimiters or markers are defined to isolate the diff content from the agent's instructions.
- Capability inventory: Extensive Git command capabilities including branch manipulation, resets, and pushing to remote repositories.
- Sanitization: There is no evidence of sanitization or filtering of the diff content before it influences the generation of commit narratives.
Audit Metadata