Skills
skills/autumnsgrove/groveengine/firefly-journal/Gen Agent Trust Hub

firefly-journal

Pass

Audited by Gen Agent Trust Hub on Mar 18, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the 'gw git log' command to retrieve commit messages and file statistics. This is a read-only operation necessary for its core function.
  • [PROMPT_INJECTION]: The skill is subject to indirect prompt injection because it processes git commit history, which is untrusted external data. Malicious actors could insert instructions into commit messages to manipulate the generated summaries. The impact is limited because the skill only generates drafts and requires manual review in the 'REFLECT' phase.
  • Ingestion points: Commit history data gathered in Phase 1 (DRIFT).
  • Boundary markers: No specific markers or delimiters are used to isolate commit text.
  • Capability inventory: Read-only command execution for git logs. No file-writing or network-exfiltration capabilities.
  • Sanitization: No validation or sanitization of commit messages is performed.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 18, 2026, 06:13 AM