using-git-worktrees
Pass
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes various Git and shell commands to manage worktrees, navigate directories, and perform project-specific operations.
- [EXTERNAL_DOWNLOADS]: Automatically installs project dependencies using standard tools such as
npm install,pip install,poetry install, andgo mod download. These actions occur within the context of the current repository being worked on. - [COMMAND_EXECUTION]: Runs project-specific test suites (
npm test,cargo test,pytest,go test) to verify the integrity of the new workspace baseline. - [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by processing configuration from files within the repository.
- Ingestion points: Reads configuration preferences from
CLAUDE.mdand project structure frompackage.json,Cargo.toml,requirements.txt,pyproject.toml, andgo.mod. - Boundary markers: Absent; the skill does not use specific delimiters or instructions to ignore embedded commands within these configuration files.
- Capability inventory: The skill has access to shell execution, package management, and arbitrary test execution within the local environment.
- Sanitization: Absent; data extracted from repository files (such as paths) is used directly in shell commands.
Audit Metadata