merge-branch-into-current
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes various git commands (merge, status, branch, worktree, rev-parse) directly and through a bundled shell script (
scripts/merge_branch_into_current.sh) to automate the merge workflow. - [SAFE]: The shell script uses double-quoting for variables (e.g.,
"$source_branch","$worktree_path"), which effectively mitigates the risk of command injection from malicious branch or file names. - [SAFE]: No network operations or external downloads are performed; the skill only interacts with the local Git repository environment.
- [SAFE]: The instruction set in
SKILL.mdis strictly task-oriented and does not contain any prompt injection or evasion techniques.
Audit Metadata