worktree-handoff
Pass
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses standard Git commands like
git stashandgit worktreeto manage local development changes.- [COMMAND_EXECUTION]: The skill executes Git CLI commands to perform its core functionality, which is appropriate for its stated purpose.- [PROMPT_INJECTION]: The skill processes output from Git commands and user-provided branch names, presenting a surface for indirect prompt injection. Mandatory Evidence Chain: 1. Ingestion points:git statusoutput and user-supplied target branch names in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Execution ofgitcommands in SKILL.md. 4. Sanitization: Absent. This surface is standard for CLI-based utility skills.
Audit Metadata