retro

Analyzes commit history and work patterns to generate engineering retrospectives, enhancing team performance and code quality.

Install this skill

or

63/100

Security score

The retro skill was audited on Mar 17, 2026 and we found 13 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 345

Template literal with variable interpolation in command context

SourceSKILL.md

345

```bash

low line 21

Access to hidden dotfiles in home directory

SourceSKILL.md

21	_UPD=$(~/.claude/skills/gstack/bin/gstack-update-check 2>/dev/null \|\| .claude/skills/gstack/bin/gstack-update-check 2>/dev/null \|\| true)

low line 23

Access to hidden dotfiles in home directory

SourceSKILL.md

23	mkdir -p ~/.gstack/sessions

low line 24

Access to hidden dotfiles in home directory

SourceSKILL.md

24	touch ~/.gstack/sessions/"$PPID"

low line 25

Access to hidden dotfiles in home directory

SourceSKILL.md

25	_SESSIONS=$(find ~/.gstack/sessions -mmin -120 -type f 2>/dev/null \| wc -l \| tr -d ' ')

low line 26

Access to hidden dotfiles in home directory

SourceSKILL.md

26	find ~/.gstack/sessions -mmin +120 -type f -delete 2>/dev/null \|\| true

low line 27

Access to hidden dotfiles in home directory

SourceSKILL.md

27	_CONTRIB=$(~/.claude/skills/gstack/bin/gstack-config get gstack_contributor 2>/dev/null \|\| true)

medium line 30

Access to hidden dotfiles in home directory

SourceSKILL.md

30	If output shows `UPGRADE_AVAILABLE <old> <new>`: read `~/.claude/skills/gstack/gstack-upgrade/SKILL.md` and follow the "Inline upgrade flow" (auto-upgrade if configured, otherwise AskUserQuestion with

medium line 51

Access to hidden dotfiles in home directory

SourceSKILL.md

51	To file: write `~/.gstack/contributor-logs/{slug}.md` with this structure:

medium line 71

Access to hidden dotfiles in home directory

SourceSKILL.md

71	Then run: `mkdir -p ~/.gstack/contributor-logs && open ~/.gstack/contributor-logs/{slug}.md`

low line 145

Access to hidden dotfiles in home directory

SourceSKILL.md

145	cat ~/.gstack/greptile-history.md 2>/dev/null \|\| true

medium line 182

Access to hidden dotfiles in home directory

SourceSKILL.md

182	Greptile signal (if history exists): Read `~/.gstack/greptile-history.md` (fetched in Step 1, command 8). Filter entries within the retro time window by date. Count entries by type: `fix`, `fp`, `

medium line 393

Access to hidden dotfiles in home directory

SourceSKILL.md

393	Note: Only include the `greptile` field if `~/.gstack/greptile-history.md` exists and has entries within the time window. Only include the `backlog` field if `TODOS.md` exists. If either has no da

Scanned on Mar 17, 2026

View Security Dashboard

Installation guide →

GitHub Stars 15.3K

Rate this skill

Categorysales

UpdatedApril 10, 2026

claude claude-code copilot cline frontend design stripe docx git api testing sdr product-manager growth-pm technical-pm qa-engineer sales product development

garrytan/gstack