worktree-setup
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the 'branchlet' utility globally via npm and manages project dependencies through poetry and pnpm from official package registries.
- [COMMAND_EXECUTION]: Executes shell commands for git worktree management, application execution, and process termination to resolve port conflicts.
- [DATA_EXFILTRATION]: Replicates local sensitive configuration files ('.env') to the new worktree directory; these operations are local and consistent with the intended setup purpose.
- [PROMPT_INJECTION]: The skill uses placeholders for branch and path names in shell commands, which presents a surface for command injection if inputs are maliciously crafted. Ingestion points: branch and path placeholders in SKILL.md. Capability inventory: shell command execution in SKILL.md. Sanitization: None.
Audit Metadata