wrap
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: No security issues detected. The skill performs session cleanup using standard git commands to manage worktrees and branches.
- [COMMAND_EXECUTION]: Executes git commands to automate environment cleanup. These are constrained to the local repository and follow safety logic, such as checking merge status before deletion.
- [DATA_EXFILTRATION]: Manages the deletion of temporary session files like .branch-context.md after consolidation, which is consistent with its stated purpose of wrapping up development cycles.
- [PROMPT_INJECTION]: The skill ingests untrusted data from git command outputs (worktree paths, branch names) in SKILL.md and uses them in subsequent commands (git worktree remove, git branch -d). While no sanitization is present, the impact is limited to local repository management and the skill explicitly forbids operations on the main worktree, reducing the risk of accidental or malicious destruction.
Audit Metadata