Golang Uber Dig
AdvisoryAudited by Static analysis on May 1, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may edit code, update project files, and run development commands while helping wire Dig into a Go project.
The skill requests authority to read and modify project files and run Go/Git/lint commands. This matches its Go coding purpose, but those tools can still change a user's repository.
allowed-tools: Read Edit Write Glob Grep Bash(go:*) Bash(golangci-lint:*) Bash(git:*) Agent WebFetch mcp__context7__resolve-library-id mcp__context7__query-docs
Review proposed file changes and command output before committing or deploying; keep command use scoped to the intended Go project.
Installing or updating the Dig dependency may change the project's dependency graph.
The skill suggests adding the public Dig Go module without a version pin. This is expected for adopting the library, but it can alter go.mod/go.sum and select the current module version.
go get go.uber.org/dig
Confirm the module version, review go.mod/go.sum changes, and use normal dependency review or pinning practices if your project requires reproducible builds.