x-git
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: No security issues detected. The skill is a documentation and instruction set for using the x-cmd CLI to perform legitimate administrative Git tasks.
- [COMMAND_EXECUTION]: The skill uses the x-cmd CLI ecosystem to execute Git operations and platform integrations. These commands, including Git hook management, are standard tools for developers and are executed at the user's discretion for repository management.
- [PROMPT_INJECTION]: The skill processes data from external sources such as repository issues and pull requests. This presents an inherent surface for indirect prompt injection, which is a standard characteristic of Git management tools; no specific vulnerabilities or malicious instructions were identified.
- [CREDENTIALS_UNSAFE]: The skill provides instructions for configuring authentication tokens for GitHub, GitLab, and other platforms. It uses placeholders and interactive initialization commands, correctly advising users to store and rotate tokens securely without hardcoding any secrets.
Audit Metadata