commit

CRITICAL E004: Prompt injection detected in skill instructions.

• Potential prompt injection detected (high risk: 0.90). The prompt explicitly instructs creating a marker file to bypass a git-commit-block hook (circumventing repository safeguards), which is a deceptive/out-of-scope directive for a commit-making skill and thus constitutes a prompt injection.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 0.90). The skill contains an explicit, mandatory method to bypass a repository git-commit-block hook (creating a marker file to disable the hook) and strong directives like "ALWAYS stage all unstaged changes" which together intentionally circumvent repository security/policy checks and could enable committing sensitive or forbidden content — a deliberate backdoor-like behavior.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The skill explicitly instructs the agent to bypass a security mechanism (the git-commit-block hook) by creating and later removing a marker file in the repository, which directs the agent to circumvent protections and thus can compromise machine/repo state.