git-commit
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches commit type and emoji definitions from the author's official GitHub repository (ruan-cat/monorepo). This is a vendor-owned resource used for configuration and does not involve script execution.
- [COMMAND_EXECUTION]: Executes standard git operations (status, diff, commit, restore) and file system cleanup (rm) to perform its primary function. These commands are consistent with the skill's stated purpose.
- [PROMPT_INJECTION]: The skill analyzes external code changes (git diff), which constitutes an indirect prompt injection surface. 1. Ingestion points: Reads staged changes and work tree diffs in SKILL.md. 2. Boundary markers: No specific markers are used to isolate instructions from data. 3. Capability inventory: Capabilities are limited to standard git and file operations. 4. Sanitization: The workflow includes an explicit review step to detect secrets, logs, or unexpected changes before committing.
Audit Metadata