git-commit
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses local
gitcommands such asgit status,git diff, andgit addto inspect and manage the repository state. These operations are limited to the local filesystem and are necessary for the skill's primary purpose. - [PROMPT_INJECTION]: The skill was evaluated for indirect prompt injection risks since it processes
git diffoutput which could contain untrusted data from source files. However, the risk is mitigated as the skill's capabilities are restricted to git staging and committing, and it does not perform network operations or execute arbitrary code from the diffs. - [SAFE]: No obfuscation, hardcoded credentials, or remote code execution patterns were found. The instructions explicitly advise the user to never stage secrets and to avoid destructive commands.
Audit Metadata