apply-semantic-versioning
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a standard workflow for semantic versioning (SemVer 2.0.0). It correctly identifies project configuration files (e.g., package.json, Cargo.toml) and uses benign tools like grep and git to retrieve current versions and change history.
- [SAFE]: No suspicious network operations, credential harvesting, or unauthorized privilege escalation attempts were detected. The only external reference is to the official semver.org documentation, which is a trusted source.
- [SAFE]: While the skill ingests untrusted data in the form of git commit messages for classification, it does not execute this content or use it in a way that would lead to prompt injection. The risk surface for indirect prompt injection is minimal given the specific classification logic provided.
Audit Metadata