Back to skill
Skillv1.0.0
ClawScan security
Git Tool · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 28, 2026, 6:15 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is a simple wrapper around the local git binary and its files and instructions are consistent with that purpose, aside from a small metadata omission (it doesn't declare that git is required).
- Guidance
- This skill is a harmless wrapper around the local git program. Before installing or running it: 1) ensure you have git installed on the host (the skill metadata omitted that requirement); 2) be aware that commands like push/pull will contact remote repositories and use whatever SSH keys or stored credentials your git is configured to use (the script itself does not collect or send credentials); 3) review and test the script in a safe repository if you are concerned about unintended commits or pushes. If you want the registry metadata to be accurate, ask the publisher to declare the git binary as a required dependency.
Review Dimensions
- Purpose & Capability
- noteThe name, description, SKILL.md, and the included script all describe and implement a git wrapper (init, status, branch, commit, stash, diff, push, pull). This capability legitimately requires the local git binary, but the registry metadata lists no required binaries — that's an omission but not malicious.
- Instruction Scope
- okSKILL.md only instructs running the bundled scripts/git.py with git-like commands. The script only invokes the system 'git' command via subprocess and prints results. It does not read arbitrary files, external endpoints, or environment variables beyond what git itself may use.
- Install Mechanism
- okThere is no install spec (instruction-only with one bundled script). Nothing is downloaded or written to disk by an installer as part of the skill — the only code is the included scripts/git.py.
- Credentials
- noteThe skill declares no required environment variables and the script does not access extra env vars. However, normal git operations (push/pull) can use credential helpers, SSH keys, or stored credentials from the user's environment/config — the skill itself doesn't request or exfiltrate them, but running it will cause git to use whatever credentials are configured on the host.
- Persistence & Privilege
- okalways is false and the skill does not modify other skills or system-wide agent settings. It does not request persistent presence or elevated privileges.