Skills
skills/qwenlm/qwen-code/docs-update-from-diff/Gen Agent Trust Hub

docs-update-from-diff

Pass

Audited by Gen Agent Trust Hub on Apr 26, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes git status and git diff to identify changes. These commands are core functionality for documentation synchronization and are used within the repository's local context.\n- [PROMPT_INJECTION]: The skill processes repository content via git diff, which represents a surface for indirect prompt injection. This is considered safe as the agent's capabilities are limited to documentation editing.\n
  • Ingestion points: Data entering through git diff output as described in SKILL.md.\n
  • Boundary markers: No specific delimiters or safety instructions are defined for the diff content.\n
  • Capability inventory: Local repository state inspection and markdown file writes to the docs/ directory.\n
  • Sanitization: No explicit validation or sanitization is performed on the analyzed code diffs.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 26, 2026, 09:50 PM
Security Audit — agent-trust-hub — docs-update-from-diff