Skills
skills/code-yeongyu/oh-my-openagent/git-master/Gen Agent Trust Hub

git-master

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection via repository metadata and content.
  • Ingestion points: The skill ingests untrusted data from the repository environment through commands such as git log, git diff, and git blame in Phase 0 and Phase H2.
  • Boundary markers: The instructions do not define clear delimiters or provide the agent with guidance to ignore potential instructions embedded within the commit messages or file contents being analyzed.
  • Capability inventory: The skill utilizes extensive shell capabilities including git commit, git rebase, git add, and git push which can modify the repository state or remote history.
  • Sanitization: There is no evidence of sanitization or validation of the data retrieved from Git commands before it is processed by the agent's logic.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 06:32 AM
Security Audit — agent-trust-hub — git-master