git-commits
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [SAFE]: Analysis of the instructions and local reference files indicates no malicious patterns, unauthorized network access, or attempts to exfiltrate data.
- [NO_CODE]: The skill package is composed entirely of Markdown documentation and configuration files. No Python or Node.js scripts are present, which removes the possibility of direct remote code execution or unauthorized system modification.
- [PROMPT_INJECTION]: The skill has an attack surface for indirect prompt injection because it processes untrusted external data in the form of code changes and existing commit messages. However, since the skill possesses no execution or network capabilities, this surface cannot be leveraged for high-impact attacks. 1. Ingestion points: Staged changes and user-provided commit text processed via the instructions in SKILL.md. 2. Boundary markers: None present in the prompt templates. 3. Capability inventory: No file-system, network, or subprocess execution capabilities. 4. Sanitization: None specified for input data.
Audit Metadata