git-multibranch
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: HIGHCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- Privilege Escalation (HIGH): The skill instructs the agent to modify system-level configurations, specifically
/etc/ssh/sshd_config. This requires root/sudo privileges and significantly alters the system's security posture by enabling password-based SSH authentication. - Credential Safety (HIGH): The skill recommends using
sshpasswith passwords directly in the command line and environment variables (e.g.,export GIT_SSH_COMMAND='sshpass -p password...'). This practice exposes credentials in process lists and shell history. - Security Policy Bypass (HIGH): The instructions suggest using
-o StrictHostKeyChecking=nofor SSH commands. This disables a critical security feature of SSH, making the connection vulnerable to Man-in-the-Middle (MitM) attacks. - Persistence (HIGH): The skill guides the user/agent in creating and enabling system services via
systemctl enable, which ensures that the configured deployment mechanisms persist across system reboots. - Command Execution (MEDIUM): The skill involves creating executable shell scripts (
post-receivehooks) that are automatically triggered by Git operations.
Recommendations
- AI detected serious security threats
Audit Metadata