The Agent Skills Directory

[COMMAND_EXECUTION]: The skill uses the git tool to execute git fetch origin and git diff. These commands are standard for branch analysis and do not pose a security risk in this context, as they operate on the repository's configured remotes and local history.
[DATA_EXPOSURE]: The skill instructs the agent to analyze source code files, including controllers, models, and config. This is the intended primary function of the skill for code review and documentation purposes; no evidence of exfiltrating sensitive data to external sources was found.
[INDIRECT_PROMPT_INJECTION]: The skill processes untrusted input in the form of branch code changes via git diff. While this presents a theoretical surface for indirect injection (e.g., malicious instructions hidden in code comments), the skill's output is restricted to generating a static Markdown report and does not involve executing the analyzed code, mitigating the risk. Severity is assessed as LOW.

branch-api-diff-design