conventional-commit-push
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes standard Git commands (
git add,git commit,git push) to perform its intended function. It includes safety constraints such as requiring explicit file paths and forbidding force-pushes to prevent accidental data loss or history destruction. - [CREDENTIALS_UNSAFE]: The skill proactively addresses credential safety by instructing the agent to never commit files typically containing secrets, such as
.env,.pem, or.keyfiles, without an explicit user override. - [DATA_EXFILTRATION]: While the skill performs network operations via
git push, this is the primary purpose of the tool. The instructions emphasize stopping and surfacing errors rather than auto-resolving conflicts, which maintains user control over data transmission.
Audit Metadata