commit
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes standard version control commands including
git status,git diff,git add, andgit commit. These operations are well-defined and strictly aligned with the skill's stated purpose of managing atomic commits. - [PROMPT_INJECTION] (LOW): The skill is susceptible to indirect prompt injection (Category 8).
- Ingestion points: Untrusted data enters the agent's context via
git diff HEAD, which reads the contents of modified files in the workspace. - Boundary markers: Absent. There are no instructions or delimiters to prevent the agent from following instructions that might be embedded within the code or comments of the files being analyzed.
- Capability inventory: The skill has the capability to perform subprocess calls to
gitfor adding and committing files. - Sanitization: Absent. There is no logic provided to sanitize or filter the content of the diff before the agent analyzes it to generate commit messages.
Audit Metadata