using-git-worktrees
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes standard development commands for environment setup and testing, including
npm install,cargo build,pip install,go mod download, and various test runners (npm test,pytest, etc.) based on detected project files. - [EXTERNAL_DOWNLOADS]: Automated dependency installation involves fetching packages from well-known technology services and official registries (NPM, PyPI, Cargo, Go Proxy) to set up the isolated workspace.
- [SAFE]: Implements proactive safety measures by verifying directory isolation using
git check-ignoreand automatically updating.gitignoreto prevent accidental inclusion of worktree content in the repository. - [DATA_EXFILTRATION]: No evidence of unauthorized data transmission or access to sensitive credentials. The skill operates within project-local directories and a dedicated configuration path for worktrees.
Audit Metadata