git-commit
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool to execute standard Git commands such as git diff, git status, git add, and git commit to manage repository changes.
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection.
- Ingestion points: The skill reads untrusted data from the codebase through git diff and git status --porcelain commands.
- Boundary markers: No explicit delimiters are used to separate the analyzed diff content from the agent's internal instructions.
- Capability inventory: The skill possesses the ability to stage files and create commits via the Bash tool.
- Sanitization: No sanitization or validation of the diff output is performed before it is processed by the agent.
Audit Metadata