git-history-analyzer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill performs expected git operations for code analysis. No dangerous shell commands, exfiltration patterns, or persistence mechanisms were found.
- [Indirect Prompt Injection] (SAFE): The skill ingests untrusted data from repository history, creating a theoretical surface for indirect prompt injection. However, this is inherent to the skill's primary purpose of analyzing commit logs and is limited to read-only capabilities. 1. Ingestion points:
git logandgit blameoutput (including commit messages). 2. Boundary markers: Absent. 3. Capability inventory: Local read-onlygitcommands. 4. Sanitization: None.
Audit Metadata