Back to skill
Skillv1.0.0
ClawScan security
GitAssist AI-Powered Git Workflow Helper · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 10, 2026, 11:30 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and instructions are consistent with a local git helper: it only runs git commands to generate messages and does not request credentials or network access, though its marketing language about being 'AI-powered' is misleading because the implementation is deterministic heuristics.
- Guidance
- This skill appears to do what it says: it runs local git commands to produce commit messages, PR summaries, changelogs, and branch-name suggestions and does not contact external services or ask for credentials. Notes before installing/using: (1) The marketing claims 'AI-powered' but the code is rule-based — expect heuristic outputs rather than calls to an LLM. (2) The tool executes git in whatever working directory you run it from; run it in a safe repository and avoid staging secrets you don't want processed. (3) Review the included src/git-assist.js yourself if you have concerns; ensure the behavior matches your expectations before using it in CI or automated workflows. (4) Verify the author/contact channels if provenance matters.
Review Dimensions
- Purpose & Capability
- noteThe name/description (generate commit messages, PR descriptions, changelogs, branch names) matches the included code which runs git commands and synthesizes outputs. Minor mismatch: SKILL.md and README claim 'No external API calls. Uses your local or configured AI model' / 'AI-Powered', but the shipped src/git-assist.js contains deterministic heuristics and does not call any AI model or external service.
- Instruction Scope
- okRuntime instructions and code stay within the stated scope: they read staged diffs, branch/log/diff data from the repository and produce messages. There are no instructions to read unrelated system files or to transmit data externally.
- Install Mechanism
- okNo install spec is provided (instruction-only skill plus a source file). Nothing is downloaded or written by an installer; risk from installation mechanism is low.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. The code uses child_process to call git but does not require additional secrets or external service access.
- Persistence & Privilege
- okSkill is not always-enabled and is user-invocable. It does not modify other skills or system-wide agent settings and does not request persistent privileges.