commit
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection through the analysis of untrusted data in file modifications.
- Ingestion points: The skill reads and interprets the output of
git statusandgit diff(SKILL.md). - Boundary markers: None identified; there are no instructions to the agent to ignore or escape instructions that may be embedded within the source code changes.
- Capability inventory: The skill has the capability to execute shell commands, specifically
git addandgit commit(SKILL.md). - Sanitization: No sanitization or validation of the content within the diffs is performed before the agent uses it to decide on commit groupings and messages.
- [COMMAND_EXECUTION]: The skill relies on the execution of Git command-line interface tools to manage the repository state.
- Evidence: The procedure and examples explicitly list
git status,git diff,git add, andgit commit(SKILL.md).
Audit Metadata