sync-fork
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes git commands (e.g.,
git reset --hard,git push --force-with-lease,git push --delete) to modify repository state. These are destructive operations but are the primary intended functionality of the skill. Security is maintained through mandatory user confirmation steps before any such command is executed. - [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface by processing data from external git repositories (branch names, commit logs). Evidence: (1) Ingestion points:
git remote -v,git log,git branch(SKILL.md). (2) Boundary markers: None present. (3) Capability inventory:git reset,git push,git delete(SKILL.md). (4) Sanitization: None explicitly defined. This is a low-risk surface common to tools interacting with external repository data.
Audit Metadata