← 返回 Skills 市场

Git Commit PR Workflow

Name: Git Commit PR Workflow
Author: wimi321

作者 wimi321 · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

总下载

当前安装

版本数

在 OpenClaw 中安装

/install claude-code-git-commit-pr-workflow

功能描述

Use when the user wants the full git workflow: branch creation if needed, commit, push, and PR create or update with a concise summary and test plan.

使用说明 (SKILL.md)

Git Commit PR Workflow

Use this skill for end-to-end git delivery from working tree to pull request.

Workflow

Inspect branch state, diff against default branch, and existing PR state.
Create a feature branch if still on the default branch.
Stage and commit the relevant changes.
Push the branch.
Create or update the PR with a short title, summary bullets, and test plan.

Guardrails

No destructive git commands unless explicitly requested.
No force push to default branches.
Keep PR titles short and bodies structured.
Avoid committing secrets or unrelated changes.

Example Requests

Commit this work, push it, and open a PR.
Take the current changes to a polished PR with a test plan.

Inputs

Current git state
Default branch
Optional user instructions

Outputs

New commit
Pushed branch
Created or updated PR

Success Criteria

The right files were committed.
The branch was pushed safely.
The PR body accurately reflects the diff.

Non-Goals

Force-push workflows by default
Interactive git rebases

Source Provenance

Derived from src/commands/commit-push-pr.ts.

安全使用建议

This skill appears to be what it says (end-to-end git -> PR), but it omits operational details you should confirm before using it: - Verify the agent environment actually has git and any CLI tools it will use (git, gh, hub) and that those are the intended tools. The skill itself does not declare these as requirements. - Confirm how authentication will be performed: will it rely on SSH keys present in the environment, an existing remote credential, or an API token? If API tokens or SSH keys are available to the agent, ensure they have only the minimum needed permissions and do not expose sensitive repos. - Ask the skill author to document which remote host (GitHub/GitLab/other) the skill targets and whether it will call a third-party API or use the local git client. Lack of this detail can lead the agent to push or open PRs in unexpected locations. - Because instructions are high-level and allow broad discretion, review the exact git commands the agent plans to run before allowing execution — especially any operation that could rewrite history or touch protected branches. - Test the skill first in a non-sensitive repository or fork, and restrict its use to user-invoked runs rather than automatic/always-on invocation. If you need the skill, request the maintainer add explicit requirements (git binary, preferred CLI/tooling, and documented auth mechanism) so you can validate them before granting the agent access to real repositories.

功能分析

Type: OpenClaw Skill Name: claude-code-git-commit-pr-workflow Version: 1.0.0 The skill bundle describes a standard Git workflow for branch creation, committing, pushing, and PR management. It includes explicit safety guardrails in SKILL.md to prevent committing secrets or performing destructive operations, and lacks any indicators of malicious intent, data exfiltration, or obfuscation.

能力评估

⚠ Purpose & Capability

The skill claims to perform end-to-end git delivery including PR creation, but the manifest declares no required binaries or credentials. Performing these actions typically requires a git client and authentication (SSH keys, GitHub/GitLab token, or CLI tools). The absence of declared dependencies or a stated auth mechanism is an incoherence.

ℹ Instruction Scope

SKILL.md gives a high-level workflow (inspect branch/diff, create branch, commit, push, create/update PR) and guardrails (no destructive commands, avoid secrets). It does not specify which commands or tools to use (git CLI, 'gh'/'hub', or API), nor how to choose remotes or PR host. The guidance is non-prescriptive, which leaves the agent broad discretion but not explicitly dangerous on its face.

✓ Install Mechanism

This is an instruction-only skill with no install spec and no code files. That limits the attack surface — nothing will be written or executed from a downloaded package by default.

⚠ Credentials

No environment variables, tokens, or credential requirements are declared despite the skill needing push and PR creation capabilities. Real usage requires authentication (SSH keys in agent environment or API tokens). The skill relies implicitly on existing environment credentials but does not document this, which is disproportionate to the manifest and may cause surprising behavior or failed runs.

✓ Persistence & Privilege

The skill does not request always: true and is user-invocable only. It also does not indicate modifying other skills or system-wide settings. Autonomous invocation is allowed by default (disable-model-invocation: false), which is normal; there are no additional persistence privileges requested.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install claude-code-git-commit-pr-workflow
安装完成后，直接呼叫该 Skill 的名称或使用 /claude-code-git-commit-pr-workflow 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial extraction from local Claude Code source

元数据

Slug claude-code-git-commit-pr-workflow

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题