Advanced git operations beyond add/commit/push. Use when rebasing, bisecting bugs, using worktrees for parallel development, recovering with reflog, managing subtrees/submodules, resolving merge conflicts, cherry-picking across branches, or working with monorepos.
Security Analysis
high confidenceThe skill's instructions, requirements, and scope align with its stated purpose (advanced git workflows); it asks for only the git binary and contains no unexpected installs or credential requests.
Name/description (advanced git workflows) match the SKILL.md content and required binaries (only 'git'). There are no unrelated environment variables, installs, or config paths requested.
SKILL.md is an instruction-only guide containing many concrete git commands and examples (rebase, bisect, worktree, reflog, submodules, etc.). It includes examples that create and run temporary test scripts (e.g., writing /tmp/test-for-bug.sh and invoking it) and example uses of npm test — these are expected for automated bisect/test workflows but do allow executing repository code or scripts. The instructions do not attempt to read unrelated system credentials or files, but they do include destructive git commands (reset --hard, rebase, remove worktrees) that will modify repository state if run.
No install spec (instruction-only). Nothing is downloaded or written by the skill itself; this is the lowest-risk install model.
No environment variables, credentials, or config paths are requested. Example commands reference npm and test scripts but those are illustrative and not declared as required environment elements.
always:false and no persistence/install actions. The skill does not request permanent presence or modify other skills/config; autonomous invocation is allowed by platform default and not escalated here.
Guidance
This skill is coherent with its purpose and only needs git, but it contains concrete commands that will change repository state (rebase, reset --hard, worktree removal, etc.) and examples that create/run scripts (bisect run). Before enabling or running it: review the SKILL.md yourself, run the commands in a disposable clone or sandbox, back up important branches, and avoid running automated bisect/test scripts from untrusted repositories. Because the skill source is unknown and instruction-only, treat it as documentation the agent will follow — the main risk is accidental destructive git operations or executing repo-provided test scripts, not credential exfiltration.
Latest Release
v1.0.0
Initial release: Interactive rebase, bisect, worktree, reflog recovery, cherry-pick, subtree/submodule, sparse checkout, conflict resolution, stash patterns, blame archaeology
More by @gitgoodordietrying
Published by @gitgoodordietrying on ClawHub
