ClawHub

git-dirty-check

v1.0.0

Read-only triage for a local git working tree that summarizes uncommitted changes and applies conservative risk flags. Use when a user asks what changed in a...

0· 51·0 current·0 all-time
by@amitb-quantum
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name, description, and runtime instructions align: the skill only needs local git read operations to produce the stated triage. It declares no binaries, env vars, or installs beyond using standard git commands, which is appropriate for the described function.
Instruction Scope
Instructions stay narrowly scoped to reading repo state (git rev-parse, status, diff --stat) and limit deep diff inspection (max 3 files, 40 lines each). One area to note: secret detection is filename-pattern based only, and deep-diff inspection is discretionary when filename/stat data are 'insufficient' — this gives the agent limited judgment authority to open some diffs, so review the exact caps and filename rules if you need stricter guarantees.
Install Mechanism
Instruction-only skill with no install spec and no code files, so nothing is written to disk or fetched. This is the lowest-risk install posture.
Credentials
The skill requires no credentials or environment variables. The requested access (local read of the git repo) is proportional to its stated purpose.
Persistence & Privilege
The skill is not always-enabled and does not request elevated or persistent privileges. Autonomous invocation is permitted (platform default) but not combined with other red flags.
Assessment
This skill appears coherent and read-only, but it will run git commands and may inspect up to 3 files (40 lines each) when needed. Before enabling, ensure your repository does not contain secrets in filenames that don't match the listed secret patterns (since secret detection is filename-based only). If you require stricter guarantees, ask for an explicit policy that forbids any diff content inspection or reduce the deep-diff caps. Otherwise, it's safe to use for local triage so long as you trust the agent's local execution environment.

Like a lobster shell, security has layers — review code before you run it.

latestvk9767ecwj84y4rrh0jkre06x7d84aw3s

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments