Is git-essentials safe?

https://clawhub.ai/Arnarsson/git-essentials

95
SAFE

git-essentials is a benign reference skill containing only git command documentation with no executable code, no hidden instructions, and no data exfiltration vectors. The filesystem activity during installation is attributable to the openclaw installer, not the skill itself. The skill poses minimal risk as a passive documentation reference.

Category Scores

Prompt Injection 95/100 · 30%
Data Exfiltration 100/100 · 25%
Code Execution 95/100 · 20%
Clone Behavior 90/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 90/100 · 5%

Findings (3)

LOW Global git config modification suggestion -5

The skill suggests adding aliases to ~/.gitconfig, which could lead an agent to modify the user's global git configuration. While this is standard practice, it modifies a dotfile outside the project directory.

INFO Destructive git commands documented -5

The skill documents destructive git commands (reset --hard, clean -fdx, force push) that could cause data loss if an agent executes them without user confirmation. These are legitimate git commands with appropriate context.

INFO Installer reads credential files -10

The openclaw installer (not the skill itself) reads .env and .aws/credentials during installation. This is the installer's standard behavior, not triggered by the skill content.