Skills
skills/quuu/graphite-skills/gt-stack-split/Gen Agent Trust Hub

gt-stack-split

Pass

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill directs the agent to execute local shell commands to manage the development workflow.
  • Supported commands include git diff, git add, gt create, gt restack, gt top, and gt log.
  • These commands are used as intended for repository state analysis and branch management within the Graphite toolset.
  • [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection (Category 8).
  • Ingestion points: The agent is instructed to read the content of all modified or added files in the repository to plan the development stack.
  • Boundary markers: The instructions do not define delimiters or provide specific warnings to the agent to ignore instructions that might be embedded within the source code being analyzed.
  • Capability inventory: The agent has the capability to modify the repository by creating branches, staging hunks, and committing changes based on its analysis.
  • Sanitization: The skill does not describe any sanitization or validation processes for the data ingested from the repository files.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 9, 2026, 08:22 PM