stage-commit
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection surface detected.
- Ingestion points: The agent is instructed to read existing commit history from the repository to match its styling (SKILL.md).
- Boundary markers: There are no explicit instructions or delimiters provided to ignore potentially malicious instructions found within the repository's commit history.
- Capability inventory: The agent is authorized to perform git staging and commit operations; no capabilities are defined within internal scripts as none are present.
- Sanitization: The skill does not provide methods for sanitizing or validating inputs retrieved from the git history.
- [NO_CODE]: The skill consists exclusively of markdown instructions and contains no executable code files, scripts, or binaries.
Audit Metadata