git-pushing
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill executes local git commands via a bash script. Evidence in
scripts/smart_commit.shshows the use ofgit add,git commit, andgit push. - [DATA_EXFILTRATION] (LOW): The skill is designed to send local repository data to an external remote server. While this is the intended purpose, the script uses
git add ., which indiscriminately stages all modified and untracked files in the current directory. This behavior increases the risk of sensitive information being pushed to a remote repository if the user has not configured their.gitignorefile correctly.
Audit Metadata