commit-msg
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements proactive security guardrails by checking for sensitive files such as
.env,.pem, and files containing 'secret', 'token', or 'password' in the repository changes, providing a warning to the user to prevent accidental data exposure. - [COMMAND_EXECUTION]: The skill uses standard read-only git commands (
git status,git diff,git log) to analyze project context. It includes explicit instructions to never execute modifying commands likegit add,git commit, orgit push, ensuring the agent remains in a advisory role. - [DATA_EXPOSURE]: While the skill reads local repository data to generate suggestions, it does not perform any network operations or external data transfers, keeping all analyzed information within the local environment.
Audit Metadata