commit
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Performs git operations including status checks, staging, diff reading, and committing.
- [COMMAND_EXECUTION]: References a vendor-specific tool,
gitflow-toolkit, and provides a command for its installation if the necessarygit cialias is absent. - [PROMPT_INJECTION]: The skill uses
git diffto analyze code changes, creating a surface for indirect prompt injection. 1. Ingestion points: Code changes read viagit diff --cached. 2. Boundary markers: Absent. 3. Capability inventory: Command execution and file system access. 4. Sanitization: The diff content is processed without filtering.
Audit Metadata