git-commit
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill instructs the agent to execute local git commands (
git status,git diff --staged,git log). While these are necessary for the skill's primary purpose, they represent a local execution surface. - [PROMPT_INJECTION] (LOW): Vulnerable to Indirect Prompt Injection (Category 8).
- Ingestion points: The skill reads external, potentially untrusted data via
git diff --stagedandgit log(SKILL.md, Workflow section). - Boundary markers: No explicit delimiters or instructions are provided to the agent to ignore instructions embedded within the code changes being analyzed.
- Capability inventory: The skill is intended to be used by an agent capable of terminal command execution.
- Sanitization: There is no evidence of sanitization or filtering of the content retrieved from the git repository before it is processed by the LLM.
Audit Metadata