github-commit-recovery
Pass
Audited by Gen Agent Trust Hub on May 31, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions and a Python script to download commit patches and metadata from GitHub's official REST API and web domains. These are well-known services and the interaction is documented neutrally.
- [PROMPT_INJECTION]: The skill represents an indirect prompt injection surface as it ingests and processes untrusted data from external Git repositories.
- Ingestion points: Commit messages, diffs, and patches fetched from remote GitHub repositories as described in SKILL.md.
- Boundary markers: Not present; the skill does not specify wrapping external content in delimiters to prevent instruction following.
- Capability inventory: The skill utilizes curl, git fetch, and Python's file writing capabilities to process retrieved data.
- Sanitization: No sanitization or validation of the external commit content is performed before storage or display.
Audit Metadata