← Back to Skills Marketplace
431
Downloads
0
Stars
0
Active Installs
7
Versions
Install in OpenClaw
/install growthx-bx-submit
Description
Submit your project to Built at GrowthX — the community builder showcase for GrowthX members. Requires a GrowthX API key.
README (SKILL.md)
Built at GrowthX — Project Submission
Submit a project to Built at GrowthX, the community builder showcase for GrowthX members.
When to Use
Activate this skill when the user wants to:
- Push, submit, or share a project to Built at GrowthX
- Post a project to the GrowthX builder showcase
- Publish their build on GrowthX
Getting an API Key
If the user hasn't configured their API key yet, direct them to:
- Go to Built at GrowthX on the GrowthX platform
- Navigate to their profile / API key settings
- Click Generate API Key — the raw key is shown once, copy it immediately
- Set the key in OpenClaw config: add it under
skills.entries.growthx-bx-submit.apiKeyin~/.openclaw/openclaw.json, or set theGROWTHX_API_KEYenvironment variable
The key is tied to the user's GrowthX membership. If their membership lapses, the key stops working.
API Endpoint
POST https://backend.growthx.club/api/v1/bx/projects/agent
Authentication
Send the API key in the x-api-key header:
x-api-key: \x3CGROWTHX_API_KEY>
Request Body (JSON)
Required fields:
| Field | Type | Constraints |
|---|---|---|
name |
string | Max 100 characters. The project name. |
tagline |
string | Max 200 characters. A short one-liner about the project. |
Optional fields:
| Field | Type | Default | Constraints |
|---|---|---|---|
description |
string | "" |
Max 2000 characters. Longer project description. |
category |
string | "SaaS" |
e.g. SaaS, Fintech, Marketplace, EdTech, HealthTech, AI/ML, Developer Tools, E-commerce |
stack |
string[] | [] |
Tech stack tags, e.g. ["React", "Node.js", "MongoDB"] |
url |
string | null |
Project URL (must be a valid URI) |
status |
string | "shipped" |
One of: shipped, idea, prototyping, beta |
buildathon |
string | null |
Name of a buildathon if this project was built during one |
Example Request
curl -X POST "https://backend.growthx.club/api/v1/bx/projects/agent" \
-H "Content-Type: application/json" \
-H "x-api-key: $GROWTHX_API_KEY" \
-d '{
"name": "TaskFlow",
"tagline": "AI-powered task management for remote teams",
"description": "TaskFlow uses AI to automatically prioritize and assign tasks based on team capacity and deadlines.",
"category": "SaaS",
"stack": ["React", "Node.js", "OpenAI", "PostgreSQL"],
"url": "https://taskflow.app",
"status": "shipped"
}' | jq .
Success Response (201)
{
"project": {
"_id": "...",
"name": "TaskFlow",
"tagline": "AI-powered task management for remote teams",
"status": "shipped",
"creator": { "name": "...", "avatar_url": "..." },
"weighted_votes": 0,
"raw_votes": 0
}
}
Agent Behavior
When the user asks to submit a project, follow these steps in order:
Step 1 — Detect Projects in the Workspace
Scan standard project files in the current workspace to discover what the user has built. Only read these files:
Project manifest files:
package.json—name,description,keywords,homepage,repositorypyproject.toml/setup.py/setup.cfg—name,description,urlsCargo.toml—name,description,repository,keywordsgo.mod— module namepubspec.yaml—name,description,homepage
Documentation:
README.md— project title (first#heading) and opening paragraphgit remote -v— repository URL
Monorepo detection:
For monorepos, check for workspace configs (workspaces in root package.json, pnpm-workspace.yaml, turbo.json, nx.json) or subdirectories with their own manifest files. Each workspace package with its own name/description is a candidate project.
How to infer fields:
| Field | How to Infer |
|---|---|
name |
name field from manifest file, or first heading in README |
tagline |
description field from manifest, or first sentence of README |
description |
Summarize from README content and manifest description (1-3 sentences) |
stack |
Dependencies and devDependencies from manifest (e.g. react → "React", express → "Express", django → "Django") |
url |
homepage field from manifest, or repository URL from git remote |
category |
Infer from dependencies and README (e.g. stripe → "Fintech", next → "SaaS", ML libraries → "AI/ML") |
status |
Default to "shipped". If README explicitly says WIP/prototype/beta, use that instead. |
Step 2 — Present Discovered Projects
Show the user what you found. If multiple projects were detected (e.g. monorepo packages), list them and ask which one to submit:
I found these projects in your workspace:
- project-name — short description
- other-project — short description
Which one would you like to submit to Built at GrowthX?
If only one project is detected, present its details directly and ask to confirm.
Step 3 — Fill in Missing Details
For the selected project, show what was auto-detected and ask the user to fill in or correct anything:
nameandtaglineare required — if the tagline can't be inferred, ask for it- Show the auto-detected
stack,category,url,description, andstatusand let the user adjust - Default
statusto"shipped"unless README or context suggests it's still in progress
Step 4 — Confirm and Submit
Show a final summary of all fields that will be sent:
Submitting to Built at GrowthX:
- Name: TaskFlow
- Tagline: AI-powered task management for remote teams
- Category: SaaS
- Stack: React, Node.js, OpenAI, PostgreSQL
- URL: https://taskflow.app
- Status: shipped
Submit this?
Only after the user confirms, make the API call using curl with the x-api-key header.
Step 5 — Report Result
On success, tell the user their project was submitted and share the project link if available. On failure, explain the error (see below).
Error Handling
| Status | Meaning | What to Tell the User |
|---|---|---|
401 |
Invalid or revoked API key | "Your API key is invalid or has been revoked. Please generate a new one from the Built at GrowthX settings." |
403 |
Membership not active | "Your GrowthX membership is not active. An active membership is required to submit projects." |
400 |
Validation error (missing name/tagline, field too long, etc.) | Show the specific validation error from the response body. |
Usage Guidance
This skill appears to do what it says: it will read your project's manifest files and README and run 'git remote -v', then POST the collected fields to https://backend.growthx.club using the GROWTHX_API_KEY you provide. Before installing/using: (1) verify you trust GrowthX and that backend.growthx.club is the intended endpoint; (2) inspect your repo for any sensitive data in the listed files (package.json, README, manifest files) because those can be read and included in the submission; (3) prefer setting GROWTHX_API_KEY as an environment variable rather than writing it into ~/.openclaw/openclaw.json if you want fewer persistent copies, and know where to revoke the key if needed; (4) confirm the final submission summary the agent shows before it makes the POST request. Overall the skill is internally consistent and proportional to its purpose.
Capability Analysis
Type: OpenClaw Skill
Name: growthx-bx-submit
Version: 1.0.6
The skill is classified as suspicious due to its explicit instructions for the AI agent to perform high-risk operations, even though they appear aligned with the stated purpose. Specifically, SKILL.md instructs the agent to read various local project files (e.g., `package.json`, `README.md`), execute the `git remote -v` command, and construct a `curl` command to an external API endpoint (backend.growthx.club) using data derived from these local files and user input. While these actions are necessary for the skill's functionality (submitting project details), the direct instruction to execute shell commands and read local files presents a significant vulnerability risk, particularly for potential shell injection if the agent's input sanitization is not robust, or for unintended data exposure if the file access instructions are misinterpreted by the agent.
Capability Assessment
Purpose & Capability
Name/description, required binaries (curl, jq, git), and required env var (GROWTHX_API_KEY) are appropriate for a project-submit skill that inspects local manifests and posts to GrowthX's API.
Instruction Scope
SKILL.md explicitly instructs the agent to read a limited set of project files (package.json, pyproject, Cargo.toml, go.mod, pubspec.yaml, README.md) and to run 'git remote -v' to infer a repository URL. This is expected for auto-filling submission fields, but it does mean the agent will read repository metadata and README content — review those files for secrets before submitting.
Install Mechanism
No install steps or external downloads; instruction-only skill (no code written to disk). Lowest-risk install profile.
Credentials
Only requests a single service credential (GROWTHX_API_KEY) which is the declared primary credential and matches the documented authentication header for the API. No unrelated secrets or config paths requested.
Persistence & Privilege
always is false and the skill does not request system-wide changes. It suggests storing the API key in OpenClaw config or as an environment variable (user choice). Default autonomous invocation is allowed (platform default) but the skill's flow requires user confirmation prior to final submission.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install growthx-bx-submit - After installation, invoke the skill by name or use
/growthx-bx-submit - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.6
Fix API endpoint URL
v1.0.5
Fix API endpoint URL to backend.growthx.club
v1.0.4
Add git to required bins; fix API key setup instructions
v1.0.3
Add git to required bins; fix API key setup instructions to reference openclaw.json config instead of nonexistent install prompt
v1.0.2
Add git to required bins; fix API key setup instructions to reference openclaw.json config instead of nonexistent install prompt
v1.0.1
Remove agent memory scanning; only read standard project files
v1.0.0
growthx-bx-submit 1.0.0 — Initial release
- Lets GrowthX members submit their projects to the Built at GrowthX showcase using a simple workflow.
- Auto-detects project details from memory, manifest files, documentation, and workspace structure (including monorepos).
- Guides users to review and confirm detected project info before submitting.
- Handles authentication via GrowthX API key and provides error feedback for common issues (invalid key, missing fields, etc.).
- Supports tech stack and category inference, and interactive user prompts for missing or clarifying details.
Metadata
Frequently Asked Questions
What is Built at GrowthX?
Submit your project to Built at GrowthX — the community builder showcase for GrowthX members. Requires a GrowthX API key. It is an AI Agent Skill for Claude Code / OpenClaw, with 431 downloads so far.
How do I install Built at GrowthX?
Run "/install growthx-bx-submit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Built at GrowthX free?
Yes, Built at GrowthX is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Built at GrowthX support?
Built at GrowthX is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Built at GrowthX?
It is built and maintained by gxt-admin (@gxt-admin); the current version is v1.0.6.
More Skills