worktree-commit-merge
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes standard git CLI commands to manage repository state, including staging files, creating commits, and performing merges across worktrees. These operations are restricted to the local filesystem and the repository's own git structure.
- [SAFE]: The instructions incorporate security best practices by explicitly advising the agent to avoid staging sensitive files such as .env or build artifacts during the commit process, which helps prevent accidental data exposure.
- [SAFE]: The skill reads data from the local git environment, such as commit logs and diffs, to determine context and style. While this represents a data ingestion point, it is handled within the context of standard git operations and does not involve untrusted remote sources or dangerous processing.
Audit Metadata