Skills
skills/olshansk/agent-skills/cmd-follow-up/Gen Agent Trust Hub

cmd-follow-up

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses git diff to identify modified files within the local repository to define the review scope.
  • [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface by reading and processing untrusted file content from the repository.
  • Ingestion points: Full content of files in the current branch diff.
  • Boundary markers: Absent; the agent is not instructed to treat file content as data only or to ignore embedded instructions.
  • Capability inventory: Shell command execution (git diff) and file modification permissions.
  • Sanitization: Absent; no validation or escaping of ingested content is performed.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 03:22 PM
Security Audit — agent-trust-hub — cmd-follow-up