Skills
skills/wilmanbarrios/skills/git-commit/Gen Agent Trust Hub

git-commit

Pass

Audited by Gen Agent Trust Hub on Apr 5, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill uses a quoted HEREDOC pattern (cat <<'EOF') for the git commit command. This is a recommended security practice that prevents command injection or unintended variable expansion by the shell when processing the generated commit message content.
  • [SAFE]: Implements a mandatory 'human-in-the-loop' confirmation step using the AskUserQuestion tool. This ensures that the user reviews and approves both the commit message and the action before any changes are written to the repository.
  • [SAFE]: The skill restricts its operational scope to standard, low-risk Git read and write operations (git status, git diff, git commit) as defined in the allowed-tools configuration.
  • [SAFE]: While the skill processes external data (git logs and diffs) which could theoretically contain malicious instructions (Indirect Prompt Injection), the risk is mitigated by the structured drafting rules and the final manual verification by the user.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 5, 2026, 02:06 AM