using-git-worktrees
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Executes Git commands and shell scripts in SKILL.md to manage isolated worktrees, identify project roots, and navigate the file system.
- [EXTERNAL_DOWNLOADS]: Utilizes standard package managers (npm, pip, cargo, go) to download and install project dependencies from official registries.
- [COMMAND_EXECUTION]: Automatically runs local test suites (e.g., pytest, npm test) as part of the safety verification process in SKILL.md.
- [PROMPT_INJECTION]: Reads configuration preferences from CLAUDE.md, creating an indirect prompt ingestion surface. Ingestion points: CLAUDE.md. Boundary markers: Absent. Capability inventory: Git operations and dependency installation via shell execution. Sanitization: Uses grep pattern matching to limit the scope of ingested data.
Audit Metadata