Skills
skills/everyinc/compound-engineering-plugin/ce-commit/Gen Agent Trust Hub

ce-commit

Pass

Audited by Gen Agent Trust Hub on Apr 25, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes multiple git commands (status, diff, branch, log, checkout, add, commit) to manage the repository state. These commands are essential to the skill's purpose and are used safely.
  • [COMMAND_EXECUTION]: Utilizes dynamic context injection via the !command syntax to pre-populate repository information like current branch and status at load time. These commands are limited to local repository inspection.
  • [EXTERNAL_DOWNLOADS]: Fetches repository configuration from GitHub using the gh CLI. This is a standard interaction with a well-known service to resolve the default branch name.
  • [COMMAND_EXECUTION]: Analyzes data from the working tree (git diffs) to suggest commit messages. The skill implements security measures like shell heredocs when executing the commit command to ensure the generated message is treated as data and not executable code.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 25, 2026, 07:36 PM