worktree
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes Bash to execute local Git operations and filesystem commands, such as mkdir and cp. It copies project-specific environment files (e.g., .env, .npmrc) to ensure isolated worktrees remain functional, which is a standard local development practice.
- [EXTERNAL_DOWNLOADS]: The skill triggers package installation using well-known managers like npm, yarn, and bun. These operations download project dependencies from their official registries to set up the workspace.
- [PROMPT_INJECTION]: The skill processes user-supplied feature names in shell commands but includes specific instructions for sanitizing these inputs (using tr to filter for alphanumeric characters) to prevent injection. Evidence Chain: (1) Ingestion: User-provided name parameter. (2) Boundaries: None. (3) Capabilities: Bash execution. (4) Sanitization: Documented filtering of non-alphanumeric characters.
Audit Metadata