using-git-worktrees
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill executes various shell commands to manage the development environment. This includes Git operations (
git worktree,git check-ignore,git rev-parse), filesystem navigation (ls,cd,basename), and project-specific tooling. - [EXTERNAL_DOWNLOADS]: The skill triggers automated dependency installation through standard package managers (
npm install,pip install,poetry install,go mod download) when it detects corresponding project manifest files (e.g., package.json, requirements.txt). These downloads are performed from official public registries. - [PROMPT_INJECTION]: The skill ingests data from local project files, such as
CLAUDE.md, to determine configuration preferences. While this represents an indirect ingestion surface, the operations are limited to establishing worktree locations within the user's workspace.
Audit Metadata