repo-summary
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (LOW): The skill analyzes untrusted external data (git commit messages and repository content).
- Ingestion points: Reads
git logand commit messages from the target repository. - Boundary markers: No explicit delimiters are defined to separate untrusted commit messages from the agent's instructions.
- Capability inventory: Limited to git read operations and writing a markdown report to the local filesystem.
- Sanitization: No specific sanitization of commit messages is mentioned before including them in the final report.
- Prompt Injection (SAFE): Includes a workflow instruction labeled 'IMPORTANT' regarding auto-exiting. This is a benign behavioral guideline for the agent and does not attempt to bypass safety filters or override system constraints.
Audit Metadata