rebase
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
gitcommand-line interface to perform essential repository operations, including branch status checks, commit history analysis, and the rebase process itself. - [EXTERNAL_DOWNLOADS]: Synchronizes tracking branches with remote repositories via
git fetch, which involves network communication with the user's configured Git remotes. - [PROMPT_INJECTION]: The skill processes untrusted commit messages and file diffs from the Git repository history, which represents a potential surface for indirect prompt injection.
- Ingestion points: Commit logs and code diffs are ingested via
git log,git show, andgit diffduring the analysis and conflict resolution phases. - Boundary markers: The skill does not define explicit delimiters or security markers to separate ingested repository content from the agent's instructions.
- Capability inventory: Accesses critical Git operations such as
git rebase,git reset, andgit committhat can modify the repository state. - Sanitization: There is no evidence of content sanitization or validation performed on the branch metadata or file content before processing.
Audit Metadata