← 返回 Skills 市场

Git Workflows Advanced

Name: Git Workflows Advanced
Author: neroagent

作者 NeroAgent · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

总下载

当前安装

版本数

在 OpenClaw 中安装

/install git-workflows-advanced

功能描述

Advanced Git operations as tools: interactive rebase with autosquash, worktree management, reflog recovery, subtree/submodule handling, cherry-pick across fo...

使用说明 (SKILL.md)

Git Workflows Pro

Advanced Git operations wrapped as tools for OpenClaw agents. These are the operations you do rarely but need to be correct.

Why This Exists

Standard git skill covers add/commit/push/status. This skill covers everything else:

Interactive rebase (squash, reorder, edit, autosquash)
Worktrees for parallel development
Reflog recovery when you think you've lost commits
Subtrees for dependency management
PR creation with required human-written intent
Changelog generation

All based on battle-tested patterns from ClawHub's git-workflows and pr-commit-workflow.

Tools

git_rebase_interactive

Start an interactive rebase. Returns the todo list and guidance.

{
  "base": "HEAD~5",
  "autosquash": true
}

Response includes:

todo_list — the generated todo with current commit hashes and messages
instructions — how to edit, save, continue, abort

git_worktree_add

Create a new worktree for a branch, allowing simultaneous work on multiple branches without cloning.

{
  "branch": "feature/new-ui",
  "path": "/path/to/worktrees/new-ui"
}

Creates directory, checks out branch. Returns new worktree path.

git_reflog_recover

List reflog entries or restore a lost commit.

List:

{ "action": "list" }

Restore:

{
  "action": "restore",
  "commit_hash": "abc123",
  "target_branch": "main"
}

Creates a new branch at that commit or updates existing.

git_subtree_add

Add another repository as a subtree under a prefix.

{
  "repo_url": "https://github.com/user/lib.git",
  "prefix": "vendor/lib",
  "branch": "main"
}

Runs git subtree add --prefix.

git_pr_create

Create a PR on GitHub. Requires human-written title and body (no generation). Uses gh CLI.

{
  "title": "Add input validation to user model",
  "body": "This fixes the issue where users could submit empty forms. The validation checks for null and empty strings.\
\
Testing: Added unit tests for edge cases.",
  "head": "feature/input-validation",
  "base": "main",
  "draft": false
}

Returns PR URL and number.

git_changelog_generate

Generate a markdown changelog between two tags or from last tag to HEAD.

{
  "from_tag": "v1.2.0",
  "to_tag": "v1.3.0",
  "output_format": "markdown"
}

Outputs grouped commits by type (feat, fix, breaking) if conventional commits used.

Prerequisites

Git installed
GitHub CLI (gh) for PR creation
Authenticated with gh auth login

Usage

All tools are invoked via the registry:

tool("git-workflows-pro", "git_rebase_interactive", {"base": "HEAD~10", "autosquash": true})
tool("git-workflows-pro", "git_worktree_add", {"branch": "feature/foo", "path": "./worktrees/foo"})
tool("git-workflows-pro", "git_pr_create", {"title": "...", "body": "...", "head": "my-branch"})

Safety

Interactive rebase returns todo but does NOT execute; agent must apply changes manually
PR creation requires explicit human-written title/body (no autogeneration)
All destructive operations (subtree, reflog restore) print warnings and require additional flag if truly dangerous (not yet implemented)

Future

Add git_bisect_start, git_bisect_run
Add git_cherry_pick_across_fork for cross-repo pick
Add git_merge_conflict_resolution strategies
Add MCP server for Git operations (read-only)

License

Commercial. $49 one-time. Includes lifetime updates.

Patterns from ClawHub's git-workflows, pr-commit-workflow, and agent-harness-architect.

安全使用建议

This skill appears to implement the advanced Git features it claims, but the Python runtime composes shell commands from user inputs and calls them with shell=True. That can allow arbitrary command execution (command injection) if a malicious or malformed branch name, path, repo URL, PR title/body, or commit hash is passed. Before installing or running: - Review and/or fix scripts/run.py: avoid shell=True and use subprocess.run(list_of_args) or properly escape/validate all inputs. Validate repo_url, branch names, paths, and sanitize PR title/body. - Test the skill in an isolated environment or container on non-sensitive repositories. - Ensure the GH CLI is authenticated with a limited-scope account (not your personal/org admin account). - If you cannot audit/fix the code, treat this as untrusted: do not run it on production or sensitive repositories. If the maintainer provides a version that removes shell=True and uses safe argument passing (or otherwise documents robust input sanitization), the main technical concern would be resolved and the assessment could change to benign.

功能分析

Type: OpenClaw Skill Name: git-workflows-advanced Version: 1.0.0 The skill bundle contains critical shell injection vulnerabilities across all tools in `scripts/run.py`. The code uses `subprocess.run(shell=True)` combined with unvalidated f-string command construction for user-supplied inputs like branch names, commit hashes, and PR bodies (e.g., in `git_pr_create` and `git_subtree_add`). While the tools' functionality aligns with the stated purpose of advanced Git management and no explicit evidence of intentional malice (like data exfiltration) was found, the pervasive lack of input sanitization poses a high risk of Remote Code Execution (RCE).

能力评估

✓ Purpose & Capability

Name/description match the provided code and instructions: the SKILL.md and scripts/run.py implement interactive rebase listing, worktree management, reflog restore, subtree add, PR creation via gh, and changelog generation. No unrelated binaries or credentials are requested.

⚠ Instruction Scope

SKILL.md confines actions to Git workflows and warns about destructive operations, but the runtime code (scripts/run.py) constructs shell commands via Python f-strings and calls subprocess.run(..., shell=True) with user-supplied values (branch, path, repo_url, title, body, commit hashes). That permits shell injection if inputs contain shell metacharacters; SKILL.md does not document input sanitization or escaping. This is scope-appropriate functionality but with significant unsafe implementation choices.

✓ Install Mechanism

Instruction-only skill plus a small Python script; no install spec, no downloads. Lowest-risk install footprint.

✓ Credentials

No environment variables or credentials are requested by the skill. PR creation requires the user to have the GitHub CLI authenticated (documented in SKILL.md), which is a reasonable prerequisite.

✓ Persistence & Privilege

Skill does not request always:true and does not modify other skills or system-wide agent settings. Tool permissions in SKILL.md mark destructive actions as danger_full_access, which is appropriate for Git operations that can rewrite history.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install git-workflows-advanced
安装完成后，直接呼叫该 Skill 的名称或使用 /git-workflows-advanced 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release — advanced git: interactive rebase, worktree, reflog recovery, subtree, PR creation, changelog

元数据

Slug git-workflows-advanced

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题