Skills
skills/zenobi-us/dotfiles/writing-and-creating-git-commits/Gen Agent Trust Hub

writing-and-creating-git-commits

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION] (SAFE): The skill utilizes git and the GitHub CLI (gh) to perform repository management tasks such as status checks, diffing, and pushing. These actions are aligned with the skill's primary purpose.
  • [PROMPT_INJECTION] (LOW): Vulnerable to Indirect Prompt Injection. The skill ingests untrusted data from the repository (via git diff) and uses it to generate commit messages and perform actions like pushing code. 1. Ingestion points: untrusted data enters the context through git diff, git diff --cached, and git status --porcelain. 2. Boundary markers: None present to distinguish untrusted file content from system instructions. 3. Capability inventory: The skill allows the agent to execute git commit, git push --force-with-lease, and git rebase. 4. Sanitization: No sanitization of code content is performed before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 11:18 PM