commit
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill requires the agent to execute local shell commands for standard Git operations (status, diff, branch, log, add, commit) and development toolchains (tsc, eslint, prettier).
- [EXTERNAL_DOWNLOADS]: The skill utilizes npx to execute TypeScript, ESLint, and Prettier. These tools may be downloaded from the official npm registry if not present locally, which is a well-known and trusted service.
- [DATA_EXFILTRATION]: Includes robust logic to identify and block the exposure of sensitive data. It explicitly directs the agent to scan for credentials, .env files, and private keys (*.pem, *.key) to ensure they are not staged or committed.
- [PROMPT_INJECTION]: The skill processes untrusted external data in the form of code diffs. While this presents a surface for indirect prompt injection, the skill's primary focus is on metadata generation (commit messages) and it includes several 'Safety Rules' and 'MANDATORY FIRST RESPONSE PROTOCOLS' to constrain the agent's behavior.
- Ingestion points: git diff HEAD (SKILL.md)
- Boundary markers: None explicitly defined for prompt interpolation
- Capability inventory: File system writes (git commit), command execution (git/npx)
- Sanitization: None specified for input diff content
Audit Metadata