Skills
skills/butttons/pi-kit/git-fix/Gen Agent Trust Hub

git-fix

Pass

Audited by Gen Agent Trust Hub on Apr 28, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Bash(git:*) tool to perform repository management tasks such as git status, git log, git rebase, and git merge. These operations are consistent with the skill's primary purpose and do not exceed the necessary scope.
  • [PROMPT_INJECTION]: The skill includes safety instructions that require explicit user approval for destructive actions like force pushing or resetting branches, which mitigates the risk of accidental or malicious data loss.
  • [PROMPT_INJECTION]: The skill processes external data from git logs and file contents, creating an indirect prompt injection surface. This risk is inherent to the tool's core functionality and is mitigated by safety constraints.
  • Ingestion points: git log output and conflicted file contents processed in SKILL.md.
  • Boundary markers: No explicit delimiters are used to separate git output from instruction context.
  • Capability inventory: Access to Bash(git:*) for branch manipulation and Read for file inspection.
  • Sanitization: No sanitization or filtering is performed on the ingested git data.
  • [DATA_EXFILTRATION]: No network activity or access to sensitive local configuration files (e.g., SSH keys or cloud credentials) was detected. Temporary file storage is restricted to the local /tmp/ directory.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 28, 2026, 06:06 PM
Security Audit — agent-trust-hub — git-fix