← Back to Skills Marketplace
theshadowrose

Crucible Forge

by Shadow Rose · GitHub ↗ · v1.0.3 · MIT-0
cross-platform ⚠ suspicious
366
Downloads
0
Stars
1
Active Installs
4
Versions
Install in OpenClaw
/install crucible-forge
Description
Systematic workspace reorganization for AI agent users. Scans workspace, builds safety-first reorganization plan, executes with zero data loss, and verifies...
README (SKILL.md)

Forge AI Workspace Architect

Systematic workspace reorganization for AI agent users. Scans workspace, builds safety-first reorganization plan, executes with zero data loss, and verifies everything works afterward.

Systematic workspace reorganization for AI agent users.

Forge scans your AI agent's workspace, builds a safety-first reorganization plan, executes it with zero data loss, and verifies everything works afterward. Built from a battle-tested methodology used on production AI workspaces.

The Problem

AI agent workspaces accumulate chaos fast. Files pile up at root. Memory files reference moved documents. Cron jobs point to old paths. Config files drift. One bad reorganization can brick your agent's memory, break running processes, or corrupt critical state files.

Manual cleanup is dangerous. Automated cleanup without safeguards is worse.

What Forge Does

1. Scan (forge_scan.py)

  • Maps your entire workspace: files, directories, sizes, types
  • Discovers all cross-references (file A mentions file B)
  • Finds broken references (file A mentions file B, but B doesn't exist)
  • Identifies running processes and their file dependencies
  • Detects hardcoded paths in scripts and configs
  • Catalogs cron jobs, scheduled tasks, and their path dependencies
  • Outputs a complete workspace report

2. Plan (forge_plan.py)

  • Generates a reorganization plan based on your configured directory template
  • Creates hardline safety rules before touching anything
  • Produces an ordered execution sequence with dependency tracking
  • Identifies protected files that must never be modified
  • Plans reference patches (what needs updating after moves)
  • Generates rollback procedures for every step
  • Outputs a human-reviewable plan — nothing executes automatically

3. Audit (forge_audit.py)

  • Pre-move audit: Verifies backup exists, creates file manifest, checks all protected files
  • Post-move audit: Compares file counts, verifies no files lost, checks all references resolve, validates protected files unchanged
  • Content audit: Scans for misplaced content, secrets in wrong locations, orphaned files
  • Reference audit: Verifies every cross-reference in every file still resolves

Quick Start

# 1. Configure your workspace
cp config_example.py forge_config.py
# Edit forge_config.py with your workspace path, protected files, directory template

# 2. Scan your workspace
python3 forge_scan.py --config forge_config.py

# 3. Generate a reorganization plan
python3 forge_plan.py --config forge_config.py --scan-report scan_report.json

# 4. Review the plan (ALWAYS review before executing)
cat reorg_plan.json

# 5. Run pre-move audit
python3 forge_audit.py --config forge_config.py --phase pre

# 6. Execute the plan (you do this manually or with your own script)
# Forge generates the plan. YOU execute it. This is deliberate.

# 7. Run post-move audit
python3 forge_audit.py --config forge_config.py --phase post --manifest pre_manifest.txt

Design Philosophy

Safety First, Always

  • Never deletes files. Moves only. If something looks like garbage, it goes to archive.
  • Never modifies protected files. You define what's protected; Forge won't touch them.
  • Backup before changes. Forge refuses to generate a plan without a verified backup.
  • Human reviews the plan. Forge doesn't auto-execute. You read the plan, you decide.
  • Rollback for every step. Every move in the plan includes how to undo it.

Zero-Deletion Policy

No file is ever deleted during reorganization. Files are moved, never removed. Even files that appear to be duplicates are preserved until you explicitly confirm deletion.

Atomic Reference Updates

When a file moves, every reference to that file must update in the same logical step. Forge tracks these as paired operations: move file + update references = one unit. If the reference update fails, the move should be rolled back.

Framework, Not Opinions

Forge doesn't dictate your directory structure. You configure the template. Forge handles the mechanics of getting there safely.

Use Cases

  • New AI agent setup: Start with a clean, structured workspace from day one
  • Workspace recovery: Untangle months of accumulated file chaos
  • Platform migration: Moving from one AI agent platform to another
  • Team onboarding: Standardize workspace structure across multiple agents
  • Pre-deployment cleanup: Verify workspace integrity before going live
  • Post-incident audit: Check what broke and what's still intact after a failure

What's Included

File Purpose
forge_scan.py Workspace scanner and reference mapper
forge_plan.py Reorganization planner with safety rules
forge_audit.py Pre/post audit verification
config_example.py Configuration template
LIMITATIONS.md What Forge doesn't do
LICENSE MIT License

Requirements

  • Python 3.8+
  • No external dependencies (stdlib only)
  • Works on any OS (Linux, macOS, Windows)
  • Platform-agnostic (OpenClaw, AutoGPT, CrewAI, or any file-based workspace)

Configuration

See config_example.py for the full configuration reference. Key settings:

  • WORKSPACE_ROOT — Path to your workspace
  • PROTECTED_FILES — Files that must never be modified or moved
  • PROTECTED_DIRS — Directories that must never be touched
  • DIRECTORY_TEMPLATE — Your desired directory structure
  • BACKUP_DIR — Where backups are stored
  • ARCHIVE_DIR — Where "deleted" files actually go
  • README_TEMPLATE — Content template for per-directory _README.md files

quality-verified

License

MIT — See LICENSE file.

⚠️ Security Note — Config File Execution

This skill loads configuration from a user-provided Python file using importlib.exec_module. This executes the config file as Python code.

  • Only run config files you have written or fully reviewed
  • A malicious or unreviewed config file can execute arbitrary code on your system
  • Config path is validated for existence, .py extension, and size (1MB cap) before execution
  • Do not run configs provided by untrusted sources without inspection

PROCESS_CHECK_COMMANDS in your config file runs subprocess calls. Only include trusted, pre-validated commands.

⚠️ Disclaimer

This software is provided "AS IS", without warranty of any kind, express or implied.

USE AT YOUR OWN RISK.

  • The author(s) are NOT liable for any damages, losses, or consequences arising from the use or misuse of this software — including but not limited to financial loss, data loss, security breaches, business interruption, or any indirect/consequential damages.
  • This software does NOT constitute financial, legal, trading, or professional advice.
  • Users are solely responsible for evaluating whether this software is suitable for their use case, environment, and risk tolerance.
  • No guarantee is made regarding accuracy, reliability, completeness, or fitness for any particular purpose.
  • The author(s) are not responsible for how third parties use, modify, or distribute this software after purchase.

By downloading, installing, or using this software, you acknowledge that you have read this disclaimer and agree to use the software entirely at your own risk.

DATA DISCLAIMER: This software processes and stores data locally on your system. The author(s) are not responsible for data loss, corruption, or unauthorized access resulting from software bugs, system failures, or user error. Always maintain independent backups of important data. This software does not transmit data externally unless explicitly configured by the user.

Support & Links
🐛 Bug Reports [email protected]
Ko-fi ko-fi.com/theshadowrose
🛒 Gumroad shadowyrose.gumroad.com
🐦 Twitter @TheShadowyRose
🐙 GitHub github.com/TheShadowRose
🧠 PromptBase promptbase.com/profile/shadowrose

Built with OpenClaw — thank you for making this possible.

🛠️ Need something custom? Custom OpenClaw agents & skills starting at $500. If you can describe it, I can build it. → Hire me on Fiverr

Usage Guidance
This tool appears internally consistent with its purpose, but it performs broad local filesystem reads/writes and executes a user-supplied Python config file. Before using: 1) Review and, if needed, sanitize the config you supply (config can execute arbitrary Python). 2) Run initial scans on a copy or a non-production workspace to observe behavior. 3) Protect sensitive paths (add them to PROTECTED_DIRS/PROTECTED_FILES) and ensure a verified backup exists in BACKUP_DIR before generating plans. 4) Plans include shell rollback commands but Forge does not auto-execute moves — you must apply moves yourself (recommended) or inspect/modify any automation you add. 5) Prefer running in an isolated environment (non-root account or container) if the workspace contains secrets or system files. If you want, I can flag specific code lines to review or summarize where the scripts read/write files and run subprocesses.
Capability Analysis
Type: OpenClaw Skill Name: crucible-forge Version: 1.0.3 The skill bundle implements a workspace reorganization tool that utilizes high-risk patterns, specifically the execution of arbitrary Python code from user-provided configuration files via 'importlib.exec_module' and the execution of shell commands through 'subprocess.run' (seen in forge_scan.py, forge_plan.py, and forge_audit.py). While these behaviors are documented and intended for power-user customization, they represent a significant attack surface for Remote Code Execution (RCE). There is no evidence of intentional malice, data exfiltration, or hidden payloads, but the reliance on executing untrusted Python code for configuration warrants a suspicious classification.
Capability Assessment
Purpose & Capability
Name/description match the delivered code and instructions: scanner, planner, and auditor components operate over a local workspace and generate human-reviewable plans; no unexplained external credentials, binaries, or services are requested.
Instruction Scope
SKILL.md and the scripts indicate wide-ranging filesystem access (scanning, hashing, manifest generation, moving targets in generated plans) and run local system commands (e.g., ps). This is coherent with the stated purpose but means the skill will read many files (including potentially sensitive ones). Also, load_config executes a supplied .py config file — necessary for templating but increases risk if the config is obtained from an untrusted source.
Install Mechanism
No install spec is provided and the code uses only the Python standard library. No remote downloads or archive extraction detected in the provided files.
Credentials
The skill requests no environment variables, no credentials, and no platform services. Its access to local filesystem and subprocess invocation is proportional to a workspace scanner/planner tool.
Persistence & Privilege
always is false and the skill does not claim autonomous auto-execution of plans. It writes manifests and output files to workspace-specified locations (OUTPUT_DIR/AUDIT_DIR) which is expected for this functionality.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install crucible-forge
  3. After installation, invoke the skill by name or use /crucible-forge
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
No user-facing changes; SKILL.md was reverted to the previous version. - No functional changes introduced in this release. - Version number updated to 1.0.3 to reflect administrative/documentation revert.
v1.0.2
- Fixed skill and README name: replaced invalid character in "Forge � AI Workspace Architect" with "Forge AI Workspace Architect". - Updated metadata to reflect new version 1.0.2. - No functional behavior changes; documentation only.
v1.0.1
crucible-forge 1.0.1 - Added explicit security note in documentation about config file execution risks and safe usage practices. - Updated SKILL.md to emphasize config path validation and subprocess command safety. - No code or core functionality changes; this is a documentation and security warning update only. - Version bump to 1.0.1 to reflect the enhanced documentation and warnings.
v1.0.0
Initial upload
Metadata
Slug crucible-forge
Version 1.0.3
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 4
Frequently Asked Questions

What is Crucible Forge?

Systematic workspace reorganization for AI agent users. Scans workspace, builds safety-first reorganization plan, executes with zero data loss, and verifies... It is an AI Agent Skill for Claude Code / OpenClaw, with 366 downloads so far.

How do I install Crucible Forge?

Run "/install crucible-forge" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Crucible Forge free?

Yes, Crucible Forge is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Crucible Forge support?

Crucible Forge is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Crucible Forge?

It is built and maintained by Shadow Rose (@theshadowrose); the current version is v1.0.3.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments