commitlint

Validates commit messages against Conventional Commits format, ensuring consistency and quality in project version control.

Install this skill

88/100

Security score

The commitlint skill was audited on Feb 9, 2026 and we found 8 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 424

Python subprocess execution

SourceSKILL.md

424	result = subprocess.run(

low line 185

External URL reference

SourceSKILL.md

185	helpUrl: 'https://example.com/commit-guidelines',

low line 507

External URL reference

SourceSKILL.md

507	- [Commitlint Official Site](https://commitlint.js.org/) (accessed 2025-01-15)

low line 508

External URL reference

SourceSKILL.md

508	- [Configuration Reference](https://commitlint.js.org/reference/configuration.html) (accessed 2025-01-15)

low line 509

External URL reference

SourceSKILL.md

509	- [Rules Reference](https://commitlint.js.org/reference/rules.html) (accessed 2025-01-15)

low line 510

External URL reference

SourceSKILL.md

510	- [CLI Reference](https://commitlint.js.org/reference/cli.html) (accessed 2025-01-15)

low line 511

External URL reference

SourceSKILL.md

511	- [Getting Started Guide](https://commitlint.js.org/guides/getting-started.html) (accessed 2025-01-15)

low line 516

External URL reference

SourceSKILL.md

516	- [Conventional Commits](https://www.conventionalcommits.org/) - Commit message format specification

Scanned on Feb 9, 2026

View Security Dashboard

Installation guide →

GitHub Stars 106

Rate this skill

Categorydevelopment

UpdatedMay 21, 2026

openclaw backend backend-developer devops-sre technical-pm development product

majiayu000/claude-skill-registry