commit
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill is designed for routine developer tasks.- [COMMAND_EXECUTION]: The skill uses the Bash tool to execute Git and GitHub CLI (gh) commands. It employs shell heredocs (cat <<'EOF') to safely handle user-provided or generated text in commit messages and PR descriptions, mitigating potential shell injection risks.- [DATA_EXPOSURE]: Explicit instructions are provided to exclude sensitive files such as .claude/settings.local.json from being staged or committed, which is a security-positive practice.- [EXTERNAL_DOWNLOADS]: No external downloads or remote script executions were found. All operations are local or directed toward the official GitHub service.
Audit Metadata