Skills
skills/mritd/skills/commit/Gen Agent Trust Hub

commit

Pass

Audited by Gen Agent Trust Hub on May 4, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it reads and analyzes arbitrary code changes from the repository to generate commit messages.
  • Ingestion points: Processes output from git diff --cached in SKILL.md.
  • Boundary markers: No specific boundary markers or instructions to ignore embedded commands within the diff are used.
  • Capability inventory: The agent can execute shell commands (git add, git ci) and write files via the Write tool.
  • Sanitization: No sanitization of the diff content is performed before analysis.
  • [COMMAND_EXECUTION]: The skill uses several shell commands to manage the git lifecycle, including git status, git add -A, and a shell pipeline head -c4 /dev/urandom | xxd -p to generate temporary filenames. It also utilizes the git ci command from the gitflow-toolkit.
  • [EXTERNAL_DOWNLOADS]: The instructions recommend running gitflow-toolkit install if the required tool is not found on the system. This command facilitates the setup of the vendor's specialized git utility.
Audit Metadata
Risk Level
SAFE
Analyzed
May 4, 2026, 01:35 AM