Git Essentials
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: git-essentials Version: 1.0.0 The skill bundle 'git-essentials' is a comprehensive guide to Git commands and workflows. All content in SKILL.md consists of standard Git command examples and explanations, without any evidence of malicious intent, data exfiltration, unauthorized execution, or prompt injection attempts against the AI agent. The requested 'git' binary in the metadata is appropriate for the skill's stated purpose.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If run on the wrong repository or branch, these commands could delete work or disrupt shared repository history.
These are high-impact Git commands that can discard local work, delete ignored/untracked files, or rewrite remote history. They are expected in a Git reference and are not instructed to run automatically, but users should notice their impact.
git reset --hard HEAD~1 ... git clean -fdx ... git push --force-with-lease
Use destructive or force commands only when the user explicitly asks for them and after confirming the target repository, branch, and expected outcome.
Running remote mutation commands can affect shared repositories and other collaborators.
Remote Git commands can publish changes or delete remote refs using the user's existing repository permissions. This is purpose-aligned for collaboration, but it is account-impacting behavior.
git push ... git push -u origin branch-name ... git push origin --delete v1.0.0
Confirm the remote URL, branch or tag name, and intended repository before pushing, force-pushing, or deleting remote refs.