git-worktree
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the system 'git' binary to manage directories and branches. This behavior is the primary intended function of the skill.
- [PROMPT_INJECTION]: The skill uses an IDENTIFIER placeholder which represents a surface for indirect prompt injection. Ingestion points: IDENTIFIER placeholder in SKILL.md. Boundary markers: None. Capability inventory: git subprocess calls for file system and branch operations. Sanitization: None provided in the command templates; sanitization is expected to be handled by the executing agent.
Audit Metadata