conventional-commits
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [General] (SAFE): The skill consists entirely of Markdown instructions and metadata. No code (Python, JavaScript, or Shell) is present.
- [Prompt Injection] (SAFE): All instructions focus on formatting commit messages; no patterns indicative of system prompt overrides or safety filter bypasses were found.
- [Data Security] (SAFE): No access to sensitive local files (e.g., SSH keys, credentials) or external network requests are attempted.
- [Indirect Prompt Injection] (LOW): While the skill is designed to process user-provided change descriptions into commit messages, it has no side-effect capabilities (like git push or file modification), making it a low-risk interface.
Audit Metadata