Skills
skills/asiaostrich/universal-dev-standards/changelog/Gen Agent Trust Hub

changelog

Pass

Audited by Gen Agent Trust Hub on Mar 28, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes git commit history, which serves as an untrusted ingestion surface. Maliciously crafted commit messages could attempt to influence the AI assistant's output during changelog generation.
  • Ingestion points: Git commit history retrieved via git log (SKILL.md)
  • Boundary markers: No explicit delimiters or instructions to ignore commands within commits are present.
  • Capability inventory: The skill has Write permissions to the local filesystem to update CHANGELOG.md.
  • Sanitization: No explicit sanitization of commit message content is described.
  • [COMMAND_EXECUTION]: The skill is configured to use the Bash tool, specifically scoped to git log:* commands. While this involves command execution, the scope is appropriately restricted to its stated purpose of version history analysis.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 28, 2026, 09:14 PM
Security Audit — agent-trust-hub — changelog