finishing-a-development-branch
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill executes standard development commands such as
npm test,pytest, andgitoperations. These are consistent with the skill's stated purpose of verifying code quality and managing branches. - [DATA_EXFILTRATION] (SAFE): The skill includes commands to push code to remote repositories and create Pull Requests. These actions are directed at the user's own 'origin' server and are expected behaviors for a development workflow tool.
- [PROMPT_INJECTION] (SAFE): The skill ingests data from command outputs (e.g., test results). While this is a surface for indirect prompt injection, the skill's rigid structure and specific logic paths (e.g., checking for 'discard' confirmation) mitigate the risk of an agent deviating from its intended behavior due to malicious data.
Audit Metadata