write-conventional-commit
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill generates and executes shell commands such as
git status,git diff, andgit commit(SKILL.md). These commands use parameters derived from local file content, which could lead to command injection if the execution environment does not properly escape shell metacharacters in the generated commit messages.- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection due to its core functionality. - Ingestion points: Untrusted data enters the agent context via
git diffandgit statuscommands inSKILL.md(Step 1). - Boundary markers: There are no explicit delimiters or instructions provided to the agent to treat the content of the diffs as data rather than instructions.
- Capability inventory: The skill possesses the ability to execute shell commands (
git commit) and write files (/tmp/commit-msg.txt). - Sanitization: There is no evidence of sanitization, validation, or escaping of the content extracted from the repository before it is used to compose commit messages or shell command strings.
Audit Metadata