release
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill uses standard git commands (git log, git tag, git describe) and common Unix utilities (grep, sort, head) to retrieve and organize repository metadata. These operations are read-only and performed on local repository data.
- [PROMPT_INJECTION] (SAFE): The skill was evaluated for Indirect Prompt Injection risks. 1. Ingestion points: The agent reads git commit messages from the log. 2. Boundary markers: The skill does not explicitly define delimiters for untrusted commit data. 3. Capability inventory: The skill is restricted to read-only git metadata extraction and text processing. 4. Sanitization: None detected, but output is restricted to a markdown report. The risk is rated SAFE because the skill lacks capabilities (like file writing or network access) that would allow an attacker-controlled commit message to cause harm.
- [DATA_EXFILTRATION] (SAFE): No network operations or external data transmissions were found. The skill operates entirely within the local development environment.
- [CREDENTIALS_UNSAFE] (SAFE): No hardcoded secrets, API keys, or access to sensitive configuration files (e.g., .ssh, .aws) were detected.
Audit Metadata