Skills
skills/everyinc/compound-engineering-plugin/git-clean-gone-branches/Gen Agent Trust Hub

git-clean-gone-branches

Pass

Audited by Gen Agent Trust Hub on Mar 27, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes standard Git commands (fetch, branch, worktree) to manage local repository state. It follows best practices by using the command utility to bypass shell aliases, ensuring consistent and secure execution.\n- [DATA_EXPOSURE]: No sensitive data, such as credentials or environment variables, is accessed or exfiltrated. The skill only reads Git tracking information to identify branches for deletion.\n- [PROMPT_INJECTION]: The skill processes branch names from git branch -vv as untrusted data but implements a mandatory human confirmation step before performing any deletions.\n
  • Ingestion points: git branch -vv output processed in scripts/clean-gone.\n
  • Boundary markers: Absent in script output, but mitigated by explicit user confirmation in Step 2.\n
  • Capability inventory: Branch and worktree deletion commands in Step 3.\n
  • Sanitization: Script uses sed and awk to isolate the branch name token.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 27, 2026, 10:39 AM