git-commit-gen
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection by processing untrusted data from the local repository.
- Ingestion points: The skill ingest data via 'git status', 'git diff', and 'git log' commands as specified in 'SKILL.md'.
- Boundary markers: There are no explicit delimiters or specific instructions provided to the agent to disregard instructions potentially embedded within the code changes being analyzed.
- Capability inventory: The skill utilizes the 'Bash' tool to execute git operations including 'git status', 'git diff', 'git log', 'git add', and 'git commit'.
- Sanitization: No sanitization or filtering of the content retrieved from file diffs is performed before the agent summarizes the changes.
Audit Metadata