diff-analyze
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill is a standard analytical utility for assessing git changes. No malicious commands, exfiltration, or obfuscation were detected.
- [PROMPT_INJECTION]: The skill processes untrusted git diff content, creating a surface for indirect prompt injection where instructions embedded in a pull request could influence agent behavior.
- Ingestion points: Git diff content and branch metadata are ingested through the tools defined in
SKILL.md. - Boundary markers: No delimiters or instructions for the agent to disregard embedded content are used for the diff data.
- Capability inventory: The skill environment allows use of the
Bashtool, providing high system access if the agent is compromised by injected instructions. - Sanitization: No sanitization or validation of the input diff content is performed.
Audit Metadata