jujutsu-workflow

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is a set of instructional documents and shell scripts for version control management using Jujutsu (jj). It does not contain any malicious instructions or prompt injection attempts.
  • [COMMAND_EXECUTION]: The provided bash scripts (detect_jj_state.sh, verify_handoff.sh) perform standard repository introspection using jj and git. They are designed for local state checking and do not utilize unsanitized external input for command construction.
  • [EXTERNAL_DOWNLOADS]: No remote scripts or packages are downloaded or executed. The skill correctly identifies and uses local developer tools (jj, gh, glab) typically found in a developer's environment.
  • [DATA_EXPOSURE]: The skill does not access sensitive files or credentials. It only interacts with standard version control metadata and working directory files for the purpose of source code management.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 05:47 AM
Security Audit — agent-trust-hub — jujutsu-workflow