git-workflow
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill executes native git commands and local bash scripts. All commands are standard for repository management tasks such as branching, merging, and rebasing.
- [PROMPT_INJECTION] (SAFE): No prompt injection or instruction override patterns were detected in the markdown or script comments.
- [DATA_EXFILTRATION] (SAFE): No network operations are performed outside of standard
git fetch/pull/pushto the user's already configured remotes. No sensitive local files (like SSH keys or AWS credentials) are accessed. - [REMOTE_CODE_EXECUTION] (SAFE): No remote scripts are downloaded or executed. All operations are performed using the provided local scripts.
- [DYNAMIC_EXECUTION] (LOW): The
interactive-rebase.shscript usesevalto execute the rebase command. However, the input is strictly validated usinggit rev-parse --verifybefore execution, which effectively mitigates shell command injection risks. - [DATA_EXPOSURE] (SAFE): The skill does not access or expose sensitive environment variables, hardcoded secrets, or configuration files.
Audit Metadata