The Agent Skills Directory

[SAFE]: The skill provides a defensive configuration in config/commit-config.yaml using forbidden_patterns to prevent sensitive files like .env, credentials.json, and private keys from being included in commits.
[SAFE]: Workflow instructions in SKILL.md mitigate data exposure risks by requiring specific file staging and explicitly forbidding the use of broad commands like git add ..
[SAFE]: Command execution is restricted to legitimate git operations necessary for version control workflows, with no signs of privilege escalation or unauthorized network access.
[SAFE]: Use of HEREDOC for commit message construction is a secure practice that prevents potential shell injection from the generated commit content.

oma-commit