Skills
skills/florianbruniaux/claude-code-ultimate-guide/git-ai-archaeology/Gen Agent Trust Hub

git-ai-archaeology

Pass

Audited by Gen Agent Trust Hub on Apr 15, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted data from git logs and CHANGELOG files which could contain malicious instructions.
  • Ingestion points: Data from git log and CHANGELOG.md enters the agent context.
  • Boundary markers: None; the skill does not wrap external data in delimiters.
  • Capability inventory: The agent utilizes Write, Read, and Bash tools.
  • Sanitization: No filtering or escaping of git data is performed before processing.
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute git commands with the {repo_path} placeholder. This pattern could lead to command injection if the repository path provided by the user is not properly sanitized by the platform.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 15, 2026, 12:49 PM