commit
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses local git commands (
git status,git diff,git add,git commit) to manage the repository state. These commands are executed in the local environment and are restricted to version control operations.\n- [PROMPT_INJECTION]: The skill processes untrusted data from the repository (file diffs and logs) which could contain instructions intended to influence the agent's commit message generation.\n - Ingestion points: Output from
git diff HEADandgit log(SKILL.md)\n - Boundary markers: None present to isolate repository data from the agent's instructions\n
- Capability inventory: Local file staging (
git add) and committing changes (git commit) (SKILL.md)\n - Sanitization: No sanitization is performed on repository data before processing
Audit Metadata