Skills
skills/thatrebeccarae/claude-marketing/safe-push/Gen Agent Trust Hub

safe-push

Pass

Audited by Gen Agent Trust Hub on May 11, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes standard shell commands, including git, grep, and xargs, to perform repository audits and verify clean state before pushing to remote servers.
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as its primary function involves processing untrusted repository data, including file contents and commit messages.
  • Ingestion points: File contents analyzed via grep, Git diffs, and the Git commit log history (SKILL.md).
  • Boundary markers: There are no specific boundary markers or instructions to ignore embedded directives within the data being scanned.
  • Capability inventory: The skill has the capability to perform network operations (git push) and execute shell commands based on the audit results (SKILL.md).
  • Sanitization: No sanitization or filtering of the ingested data is performed before it is presented to or processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
May 11, 2026, 06:25 PM
Security Audit — agent-trust-hub — safe-push