This is a read-only review aid; inspect the actual diff before committing, rebasing, merging, or discarding files., Frequent statusline refreshes can still run Git status often in large repositories, so use a moderate refresh interval., Treat split staged/dirty state and conflict counts as stop-and-review cues before automated edits.
Privacy notes
The statusline prints aggregate counts and the branch name, not file paths, diff hunks, or commit messages., Branch names can reveal ticket IDs, customer names, incident labels, or release names in screenshots., The simple-git library shells out to local Git; any custom Git wrappers or hooks are outside this script's control.
Author
MkDev11
Submitted by
MkDev11
Claim status
unclaimed
Last verified
2026-06-04
Decision playbook
Review trust signals before you adopt
Signals are present but mixed. Use the checklist below to confirm the source and operational safety for your environment.
Compare context
Selected
0
Current score
78
Baseline
—
Delta
No baseline selected
No major trust-signal divergence detected in the current selection.
Source and provenance checks
Complete
Confirm ownership and provenance before trusting install instructions.
Source link availableRequired
Open the canonical repository and verify ownership.
Done
Source provenance statusRequired
Marked as source-backed.
Done
Metadata reviewed
Registry metadata indicates a reviewed listing.
Done
Safety and privacy checks
Complete
Validate risk disclosures before installation or API wiring.
Safety notes presentRequired
Review the listed safety guidance before running commands.
Done
Privacy notes presentRequired
Review data handling notes before connecting accounts or secrets.
Done
Trust level risk gateRequired
Trust level does not block evaluation.
Done
Package and install checks
Needs review
Check package metadata and artifact integrity signals.
Install payload available
Install or copy payload is available for review.
Done
Package verification flag
No package verification flag provided.
Pending
Checksum metadata
No checksum provided for downloaded artifact.
Pending
Compare-driven decision checks
Needs review
Use compare context to validate trade-offs before adoption.
Compare tray has multiple entries
Add at least one more entry to compare trust differences.
simple-git documents a Node.js API for running Git operations and exposes structured status results through git.status().
This statusline uses that library-level status result to report aggregate worktree risk without printing filenames or raw porcelain output.
Duplicate check
Checked existing statuslines, live HeyClaude statuslines, open pull requests, and repository content for simple-git-worktree-risk-statusline, simple-git, dirty worktree, Git status statusline, and worktree risk. The earlier git-worktree-risk-statusline submission was closed because it reused the Git status manual and git-scm.com; this replacement uses simple-git with a different canonical source, runtime, slug, and value proposition.
Disclosure
Editorial statusline recipe. No paid placement or affiliate link is used.
Show that simple-git Worktree Risk Statusline is listed on HeyClaude. Paste this Markdown into your README — it renders the badge and links back to this page.
[](https://heyclau.de/entry/statuslines/simple-git-worktree-risk-statusline)
How it compares
simple-git Worktree Risk Statusline side by side with 3 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.
Claude Code statusline that uses git-machete branch layout data to show whether the current branch is managed, how many branches are outside the layout, and when fork-point overrides need review.
✓This is a read-only review aid; inspect the actual diff before committing, rebasing, merging, or discarding files.
Frequent statusline refreshes can still run Git status often in large repositories, so use a moderate refresh interval.
Treat split staged/dirty state and conflict counts as stop-and-review cues before automated edits.
✓This statusline is read-only and does not run git-machete update, traverse, rebase, push, or pull.
Unmanaged branches and fork-point overrides are review cues; inspect git-machete status before changing stacked branches.
The compact output intentionally avoids automated branch repair because stacked-branch workflows can rewrite history.
✓The default mode does not scan file contents; it only counts sensitive-looking environment files in Git status.
Enable recursive git-secrets scanning only in repositories where you are authorized to inspect all files.
Scanner mode invokes the git-secrets executable directly and does not fall back to Git aliases.
Treat any scan warning as a stop-and-review signal before committing, sharing logs, or opening a PR.
✓Prefer reading a precomputed report; scanning dependencies during every statusline refresh can be slow.
Auto-scan mode refuses symlinked report paths and writes through a temporary file before replacing the report.
Vulnerability counts need human triage for reachability, exploitability, and acceptable remediation timing.
Do not let a zero count replace lockfile review, provenance checks, or package-manager audit policy.
Privacy notes
✓The statusline prints aggregate counts and the branch name, not file paths, diff hunks, or commit messages.
Branch names can reveal ticket IDs, customer names, incident labels, or release names in screenshots.
The simple-git library shells out to local Git; any custom Git wrappers or hooks are outside this script's control.
✓The script prints the current branch name and aggregate branch-layout counts.
Branch names can reveal ticket IDs, customers, incidents, or release names in terminal screenshots.
It reads local branch layout metadata and does not print commit messages, remote URLs, or file paths.
✓The default output prints counts only and does not print filenames or matched values.
Recursive scans read repository files and may inspect sensitive local material.
Terminal recordings can still reveal that a workspace contains sensitive environment files.
✓OSV reports can reveal package names, versions, ecosystems, and repository structure.
The statusline prints only the count, but the local JSON report may contain detailed dependency metadata.
If scans run against private package manifests, review where the scanner sends package coordinates.
Prerequisites
Node.js available in the shell used by the statusline command.
simple-git installed in the project or statusline script directory, for example with npm install --save-dev simple-git.
Git installed and the command run from a repository worktree for full status output.
Git and git-machete installed and available as git-machete.
A repository with a .git/machete branch layout for full managed-branch reporting.
A moderate statusline refresh interval so branch-layout scans do not run too often in very large repositories.
Git installed and the command run from a repository worktree.
Optional git-secrets installed if GIT_SECRETS_STATUSLINE_SCAN is set to 1.
A slower refresh interval when optional scanning is enabled, because recursive scans can be expensive.
OSV-Scanner JSON report at `osv-report.json`, or OSV_STATUSLINE_JSON set to another report path.
jq available for reading the report.
Optional OSV-Scanner CLI installed if OSV_STATUSLINE_SCAN is set to 1.