work-log-writer
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local shell commands such as
git log,git show,git status, anddateto retrieve repository data and resolve date ranges. - [DATA_EXPOSURE]: The skill accesses the user's git configuration (
user.nameanduser.email) to identify and attribute commits. While this involves PII, it is restricted to the local environment and necessary for the primary function of the skill. - [INDIRECT_PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it processes untrusted input from commit messages and diffs.
- Ingestion points: Commit history, diff output, and status summaries retrieved via
gitcommands inSKILL.md. - Boundary markers: The instructions do not specify any delimiters or safety warnings for the LLM to ignore instructions found within the repository data.
- Capability inventory: Limited to shell-based git queries and local output formatting. No default network access or file-system modification capabilities are requested.
- Sanitization: No explicit sanitization or filtering of commit content is performed prior to summarization.
Audit Metadata