review
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute
git diffandgit diff --cachedto identify changes in the local workspace. These commands are standard for repository management and are used as intended for the skill's purpose.\n- [PROMPT_INJECTION]: The skill processes code and diffs from the workspace which may contain instructions targeting the agent.\n - Ingestion points: Workspace files and git diff output (SKILL.md).\n
- Boundary markers: No explicit markers or delimiters are defined to isolate the codebase content from the agent's internal instructions.\n
- Capability inventory: The agent can execute git commands and potentially run project-specific quality checks based on the reviewed files.\n
- Sanitization: No sanitization or validation of input content is specified before it is processed by the agent.
Audit Metadata