by 安全扫描
OpenClaw
安全
high confidenceNULL
评估建议
This skill appears coherent and limited to git repo operations. Before using it, ensure you're running the agent in the intended repository (so it can't commit in the wrong project), verify the staged changes and generated commit message before finalizing, and avoid granting the agent access to repositories that contain secrets. If you need to enforce stricter checks, run the steps manually or require a user confirmation step before the final git commit.详细分析 ▾
✓ 用途与能力
Name/description ('single clean commit') match the instructions: inspect status/diff/branch, stage relevant files, draft message, and create one non-amended commit. No unrelated binaries, env vars, or config paths are requested.
✓ 指令范围
SKILL.md limits runtime actions to repository-scoped operations (git status/diff/branch, staging, commit) and includes sensible guardrails (don't amend, don't bypass hooks, avoid staging secrets). It does not instruct reading arbitrary system files or external endpoints. It implicitly assumes the agent has access to the working tree, which is expected for this skill.
✓ 安装机制
Instruction-only skill with no install spec and no code files; nothing will be downloaded or written to disk by an installer.
✓ 凭证需求
No environment variables, credentials, or config paths are required. Requested inputs (current diff, branch state, commit style) are proportional to the task.
✓ 持久化与权限
always is false and the skill does not request persistent presence or system-wide changes; autonomous invocation is allowed by default but is not combined with any broad privileges or credential access.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.02026/4/2
NULL
● 无害
安装命令
点击复制官方npx clawhub@latest install git-commit-workflow
镜像加速npx clawhub@latest install git-commit-workflow --registry https://cn.longxiaskill.com