Git Commit Template

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward local Git commit helper, with the main caution that its documentation mentions skipping Git hooks.

Review staged files before using the helper, and avoid bypassing Git hooks unless you have explicit project approval and equivalent checks will run elsewhere.

SkillSpector

By NVIDIA

Vulnerability Patterns

Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Tool Parameter Abuse

High

Category: Tool Misuse
Content: Compatible with standard git hooks (pre-commit, commit-msg, etc.): ```bash # Use --no-verify to skip hooks if needed python scripts/commit.py Fixed "urgent hotfix" --no-verify ```
Confidence: 93% confidence
Finding: --no-verify

Tool Parameter Abuse

High

Category: Tool Misuse
Content: ```bash # Use --no-verify to skip hooks if needed python scripts/commit.py Fixed "urgent hotfix" --no-verify ``` ### Searching Commit History
Confidence: 93% confidence
Finding: --no-verify

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal