oma-commit
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs standard Git operations (
git status,git diff,git add,git commit) necessary for its stated purpose of managing code commits. These operations are executed within a controlled workflow. - [SAFE]: The skill implements security best practices by explicitly instructing the agent to avoid staging or committing sensitive files like
.env,credentials.json, or private keys. This is further reinforced by aforbidden_patternsconfiguration in thecommit-config.yamlfile. - [SAFE]: External references in the documentation point to well-known and trusted sources, including the official Angular repository on GitHub and the Conventional Commits specification website.
- [SAFE]: The use of a hardcoded co-author email (
our.first.fluke@gmail.com) is consistent with the skill author's identity and is used for standard Git attribution purposes rather than data exfiltration.
Audit Metadata