git-rebase
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a utility for managing git workflows and consists entirely of documentation and local bash scripts. No malicious behavior or intent was detected during the analysis.
- [COMMAND_EXECUTION]: The skill executes standard git commands (e.g., git rebase, git fetch, git branch) and local bash scripts to automate parts of the rebase process. These commands are standard for the described purpose and do not pose a security risk.
- [DATA_EXFILTRATION]: No unauthorized data exposure or exfiltration patterns were found. Network activity is limited to standard git remote interactions with configured origins.
- [PROMPT_INJECTION]: The skill does not contain instructions that attempt to override agent behavior, bypass safety guidelines, or extract system prompts.
- [SAFE]: Evaluation of Indirect Prompt Injection surface:
- Ingestion points: Source code files containing git conflict markers are processed by the analyze-conflicts.sh and validate-merge.sh scripts.
- Boundary markers: Standard git conflict markers (<<<<<<<, =======, >>>>>>>) define the untrusted data sections.
- Capability inventory: Local file reading, shell command execution (git, bash), and file system modification.
- Sanitization: The skill implements a verification workflow requiring manual review and automated validation of merged code before the rebase continues.
Audit Metadata