git-pushing
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local bash script to automate Git operations.
- Evidence: The file
SKILL.mdinstructs the agent to executebash skills/git-pushing/scripts/smart_commit.sh. - [DATA_EXFILTRATION]: The script transmits local repository content to a remote server.
- Evidence: The script
scripts/smart_commit.shusesgit push -u origin "$BRANCH"to upload staged changes. - Risk Factor: The use of
git add .stages all changes in the current directory, which could inadvertently include sensitive files like.envor credentials if they are not correctly specified in a.gitignorefile.
Audit Metadata