ultrametric-distance
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (MEDIUM): The function commit_ultrametric_distance in SKILL.md executes system commands via subprocess.check_output. Evidence: Calls git merge-base and git rev-list using arguments commit_a and commit_b. Risk: If input strings are not validated, it may lead to unintended command behavior, though the list-based invocation prevents shell-level injection.
- [PROMPT_INJECTION] (LOW): The skill is susceptible to indirect prompt injection through external data. 1. Ingestion points: Git commit identifiers and CSV distance matrices. 2. Boundary markers: Absent. 3. Capability inventory: System process execution (git). 4. Sanitization: No input validation is present for the strings passed to the command line.
Audit Metadata