commit-message
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs standard Git operations (status, diff, log, add, commit) to fulfill its stated purpose of managing commit messages. No unauthorized command execution or privilege escalation was detected.
- [DATA_EXPOSURE]: The skill reads repository history and diffs to generate context. While it accesses local source code, it does not attempt to read sensitive system files (e.g., .ssh, .env) or send data to external servers.
- [PROMPT_INJECTION]: There are no attempts to override agent instructions or bypass safety filters within the skill definition.
- [COMMAND_EXECUTION]: The skill uses shell commands (git add -A, git commit) which are expected for a Git-focused utility. It does not allow for arbitrary command injection from user input.
- [SAFE]: No obfuscation, persistence mechanisms, or external dependencies were found in the skill's files.
Audit Metadata