explain
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local shell commands via the Bash tool to check git status and retrieve commit history for specific files. These operations are limited to metadata and status checks within the local repository.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it reads and analyzes content from local source code files which could potentially contain malicious instructions.
- Ingestion points: Reads file content via
Read,Grep, andGlobtools based on user-provided feature names or file paths in SKILL.md. - Boundary markers: None explicitly used when passing file content to the LLM for analysis.
- Capability inventory: Includes
Bash(for git),Write(for report generation), andRead(for file access). - Sanitization: No explicit sanitization or filtering of the file content is performed before analysis.
Audit Metadata