context
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes basic shell commands (
git status,git branch,git log,git diff) to retrieve project metadata. These operations are local, read-only, and typical for development tools. - [PROMPT_INJECTION] (SAFE): The 'IMPORTANT Task Planning Notes' section contains standard procedural instructions for the agent. There are no attempts to override system safety protocols, extract system prompts, or bypass constraints.
- [DATA_EXPOSURE] (SAFE): While the skill reads project history and status, it does not target sensitive system files, environment variables, or hardcoded credentials. There are no network operations to exfiltrate this data.
- [INDIRECT_PROMPT_INJECTION] (LOW): As a context-loading skill, it processes output from the local Git environment. While technically an ingestion point, the risk is negligible as it merely reports on the local filesystem state for agent reasoning.
Audit Metadata