Gitignore Sync
PassAudited by ClawScan on May 1, 2026.
Overview
This skill appears coherent and benign: it uses a scoped Python helper to fetch gitignore templates and update only a managed block in a repository’s `.gitignore` file.
This looks safe for normal use, but it will modify `.gitignore` and contact the disclosed gitignore.io/Toptal template endpoint. Use it from the correct repository root and review the generated changes before committing.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing and using the skill can change repository ignore behavior, which may cause files to be excluded from version control.
The helper writes to the repository’s `.gitignore`; this is the intended function, but it can affect which files Git ignores.
gitignore_path.write_text(updated, encoding="utf-8")
Run it only in the intended repository and review the `.gitignore` diff, or use `--dry-run` first for sensitive projects.
The external service learns the selected template names, and its response controls the generated ignore rules.
The skill relies on a disclosed external template service whose returned text is inserted into the managed `.gitignore` block.
Let the script fetch combined template rules from `https://www.toptal.com/developers/gitignore/api/<templates>`.
Review the generated block before committing it; use `--rules-file` if you need offline or locally reviewed rules.