Skills
skills/noblejasper/agent-skills/commit-and-push-jp/Gen Agent Trust Hub

commit-and-push-jp

Pass

Audited by Gen Agent Trust Hub on Mar 27, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute standard development commands such as git commit, git push, and pnpm (for linting and testing). These commands are necessary for the primary function of the skill and are restricted to the local repository context.
  • [DATA_EXFILTRATION]: Network activity is limited to git push operations to the origin remote. This is the expected behavior for a tool designed to synchronize code with a remote repository.
  • [REMOTE_CODE_EXECUTION]: No patterns of downloading and executing arbitrary remote code or unverified scripts were found. The skill relies on local environment scripts (pnpm lint, pnpm test) defined by the project's own configuration.
  • [INDIRECT_PROMPT_INJECTION]: The skill has a data ingestion surface as it reads git diff and git status output from the local working tree. While this data is untrusted, the skill operates within the established parameters of a development agent, and no exploitation patterns were observed.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 27, 2026, 01:15 AM