safe-repo
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes shell commands such as git, grep, and xargs to scan repository files and history. Evidence: Command pipelines in patterns.md like 'git ls-files | xargs grep -i -E'.
- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface because it ingests data from repository files that are potentially untrusted. Ingestion points: Files tracked by Git and their contents. Boundary markers: No delimiters are specified to distinguish file content from instructions. Capability inventory: Local command execution via shell. Sanitization: No sanitization or escaping of file content is performed before processing.
Audit Metadata