wiki-changelog
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONCREDENTIALS_UNSAFE
Full Analysis
- COMMAND_EXECUTION (LOW): The skill runs 'git remote get-url origin' and 'git log' to retrieve repository data.
- PROMPT_INJECTION (LOW): The skill is vulnerable to Indirect Prompt Injection (Category 8) because it processes git commit messages. (1) Ingestion points: commit messages and metadata from git log. (2) Boundary markers: Absent. (3) Capability inventory: Read-only access to git history; no external network or file write operations. (4) Sanitization: None.
- CREDENTIALS_UNSAFE (LOW): The 'git remote' command may reveal plaintext authentication tokens if they are stored in the remote URL within the local git configuration.
Audit Metadata