Skills
skills/rajivpant/synthesis-skills/synthesis-repo-guard/Gen Agent Trust Hub

synthesis-repo-guard

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The repo_sync_check.py script executes local system commands including git, afplay, and say via the subprocess module. These operations are used exclusively for checking repository status and alerting the user, following secure practices by passing arguments as lists.
  • [PROMPT_INJECTION]: The skill processes output from git commands, creating an indirect prompt injection surface where repository metadata (like filenames) could potentially influence agent behavior.
  • Ingestion points: Git repository status and branch information are read using git status and git rev-list in repo_sync_check.py.
  • Boundary markers: The script outputs status information without specific boundary markers or delimiters to encapsulate untrusted filesystem data.
  • Capability inventory: The script has the ability to execute shell commands (git, afplay, say) and traverse the local directory structure.
  • Sanitization: No sanitization or escaping is applied to the data retrieved from the git environment before it is output to the user or agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 02:04 PM