Prompt Git
Security checks across static analysis, malware telemetry, and agentic risk
Overview
Prompt Git appears to be a local prompt versioning tool whose file storage, search, import, and export behavior matches its stated purpose, but users should treat stored or shared prompts as sensitive.
This skill looks appropriate for local prompt version control. Before installing, remember that prompts saved into ~/.promptgit may include sensitive instructions and can be exported or shared; review imported prompt files carefully and do not store secrets unless you intend them to persist locally.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Sensitive prompts or imported prompt instructions could persist locally and be reused or exported later.
The tool intentionally stores prompt libraries, including system prompts, in a persistent local repository. This is purpose-aligned, but the stored content may be sensitive or later reused as trusted prompt context.
PromptGit gives you version control for AI prompts — system prompts, task prompts, templates, snippets... Storage Structure: ~/.promptgit/
Keep the repository private, review imported prompts before reuse, and avoid storing secrets, credentials, or confidential system instructions unless local persistence is intended.
Users have less external provenance information and should know the skill relies on local Python execution.
The package provenance is limited and the metadata does not declare Python even though the README lists Python 3.7+ as a requirement. The artifacts otherwise show local, zero-dependency scripts, so this is a disclosure/provenance note rather than a material concern.
Source: unknown; Homepage: none; Required binaries (all must exist): none
Review the included scripts before use and ensure Python 3.7+ is available; prefer installing from a trusted source when possible.