ClawHub
Back to skill
v1.0.1

Pr Description Generator

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 12:04 AM.

Analysis

This skill appears to locally generate PR descriptions from git changes, with expected local git usage and no evidence of credential use, network exfiltration, or autonomous account changes.

GuidanceThis looks safe to use as a local PR-description helper if you are comfortable with it reading git history and diffs from the selected repository. Ensure git is installed, run it only in the intended repo, and review the generated markdown or JSON before copying, saving, or posting it.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
python3 scripts/generate_pr_description.py --repo /path/to/repo ... --output pr-body.md ... --copy

The skill documents user-controlled repository selection plus optional file output and clipboard copying. These are purpose-aligned for generating a PR body, but they are local-environment interactions users should invoke deliberately.

User impactThe skill can inspect a selected local repository and place generated text in a file or clipboard if those options are used.
RecommendationRun it only against the intended repository and review generated output before saving, copying, or posting it.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
metadata
Source: unknown; Homepage: none; Required binaries (all must exist): none

The package has limited provenance metadata, and the registry does not declare required binaries even though the skill documentation says it uses the git CLI. No remote install script, unpinned package install, or hidden dependency is evidenced.

User impactUsers have less provenance information than they would from a linked source repository, and they need a working local git installation despite the metadata gap.
RecommendationPrefer versions with a public source link and an explicit git binary requirement; inspect the script before use if provenance matters for your environment.
Unexpected Code Execution
SeverityLowConfidenceHighStatusNote
scripts/generate_pr_description.py
cmd = ['git'] + args ... subprocess.run(cmd, capture_output=True, text=True, cwd=cwd, timeout=30)

The script executes the local git CLI to collect diffs and logs. This command execution is central to the stated purpose and uses argument lists rather than a shell in the visible code.

User impactUsing the skill runs local git commands in the selected repository to read change information.
RecommendationUse it in trusted working directories and avoid passing unexpected repository paths or branch names.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
scripts/generate_pr_description.py
commits_text = get_commits(base, cwd); changed_files = get_changed_files(base, cwd); diff_text = get_diff(base, cwd)

The skill builds PR text from repository context such as commit messages, changed files, and diffs. That is expected, but commit messages and filenames can contain sensitive or misleading text that may be carried into the generated PR description.

User impactGenerated PR descriptions may include repository details, commit text, or file names that users may not want to publish unchanged.
RecommendationReview and edit the generated PR body before sharing it outside the repository or pasting it into a pull request.