github-commit-recovery

Pass

Audited by Gen Agent Trust Hub on May 31, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides instructions and a Python script to download commit patches and metadata from GitHub's official REST API and web domains. These are well-known services and the interaction is documented neutrally.
  • [PROMPT_INJECTION]: The skill represents an indirect prompt injection surface as it ingests and processes untrusted data from external Git repositories.
  • Ingestion points: Commit messages, diffs, and patches fetched from remote GitHub repositories as described in SKILL.md.
  • Boundary markers: Not present; the skill does not specify wrapping external content in delimiters to prevent instruction following.
  • Capability inventory: The skill utilizes curl, git fetch, and Python's file writing capabilities to process retrieved data.
  • Sanitization: No sanitization or validation of the external commit content is performed before storage or display.
Audit Metadata
Risk Level
SAFE
Analyzed
May 31, 2026, 12:32 AM
Security Audit — agent-trust-hub — github-commit-recovery