commit
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOWCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill executes local shell commands (
git config,git add,git commit) to manage the repository. These operations are standard for the tool's stated purpose and are limited to local configuration and commit creation. - [INDIRECT_PROMPT_INJECTION] (LOW): The skill ingests untrusted data by reviewing staged and unstaged changes in the filesystem to generate commit messages. While this is an attack surface where file content could influence the agent's output, the risk is localized to the repository's commit history and the skill lacks any automatic network exfiltration or push capabilities.
- [PROMPT_INJECTION] (INFO): Contains a control instruction ('IMPORTANT: If this command is being run as a standalone request...') to manage the agent's execution lifecycle. This is a benign operational instruction rather than a malicious bypass attempt.
Audit Metadata