checkpoint
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data access techniques were identified. The skill is restricted to reviewing and committing existing local changes.
- [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted data from local git diffs, which represents a potential surface for indirect prompt injection.
- Ingestion points: Local git changes (referenced in SKILL.md).
- Boundary markers: Absent; the skill does not define specific delimiters for the diff content.
- Capability inventory: Committing changes (implies access to git CLI tools).
- Sanitization: No explicit sanitization of the git diff content is described.
Audit Metadata