Back to skill
Skillv1.0.0
ClawScan security
windows-git-ops · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 14, 2026, 3:17 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and instructions are consistent with its stated purpose of producing PowerShell-safe Git commands and workflows for Windows; it asks for no extra credentials or installs and contains only scoped, non-interactive Git guidance.
- Guidance
- This skill is coherent and appears to do only what it says: generate and recommend PowerShell-safe Git commands and workflows. Before enabling or letting an agent run it, remember: (1) the agent will produce commands that could modify your repo—review commands before execution or run them in a safe/test repo; (2) it uses the 'codex/' branch prefix by policy—confirm you want that naming convention; and (3) because it is an instruction-only skill, there are no additional downloads or secret requests, but you should still limit an agent's repository access and prefer explicit, user-confirmed execution for any destructive operations (resets, discards, merges).
Review Dimensions
- Purpose & Capability
- okName/description (Windows PowerShell Git operations) align with the SKILL.md content. The skill only describes git commands and PowerShell-safe patterns and does not declare or require unrelated binaries, credentials, or config paths.
- Instruction Scope
- okSKILL.md limits actions to inspecting and performing Git operations, emphasizes non-interactive commands, and instructs verification before mutating state. It does not instruct reading unrelated files, accessing secrets, or contacting external endpoints.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files; nothing is written to disk or downloaded during install.
- Credentials
- okNo environment variables, credentials, or config paths are requested. The guidance about setting env vars uses normal PowerShell syntax and is conditional to commands that need them.
- Persistence & Privilege
- okalways is false and the skill does not request persistent privileges or to modify other skills or system-wide settings. Autonomous invocation is allowed by platform default but not excessive here.