← Back to Skills Marketplace
mzfshark

RedHat Command Execution

by Mauricio Z. · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
74
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install axodus-command-execution
Description
Execute terminal commands safely with preflight checks and risk gating.
README (SKILL.md)

SKILL: command-execution

Purpose

Execute terminal commands safely with deterministic preflight checks, risk classification, and auditable outputs.

When to Use

  • Running tests, builds, linters, or migrations.
  • Inspecting the repo (search, list files, check versions).
  • Any command execution that could affect the environment.

Inputs

  • command (required, string): exact command to run.
  • purpose (required, string): why this command is needed.
  • expected_effects (optional, string[]): what should happen (files created, tests run).
  • risk_level (optional, enum: low|medium|high): if known.

Steps

  1. Classify command risk:
    • read-only (safe)
    • write (moderate)
    • destructive/network/system (high)
  2. Block/require confirmation for high-risk patterns:
    • recursive deletes (rm -rf, Remove-Item -Recurse -Force)
    • format/disk ops
    • piping remote scripts (curl ... | sh)
  3. If supported, prefer dry-run flags first (e.g., --dry-run, -n, --check).
  4. Execute the command and capture:
    • exit code
    • stdout/stderr
    • elapsed time (if available)
  5. Interpret results against expected_effects.
  6. If command failed:
    • stop
    • summarize error
    • propose next diagnostic steps

Validation

  • Exit code is checked (not ignored).
  • Output is summarized with the relevant error lines.
  • Side effects match expectation (no surprise modifications).

Output

command: "\x3Ccommand>"
purpose: "\x3Cpurpose>"
result: "success|blocked|failed"
exit_code: \x3Cint|null>
highlights: ["\x3Ckey output lines>"]
next_steps: ["..."]

Safety Rules

  • Never run destructive commands without explicit user confirmation.
  • Never run unknown installers or remote scripts without review.
  • Prefer minimal, scoped commands (avoid global state changes).

Example

Run tests:

  • command: pnpm test
  • purpose: “Validate behavior after refactor”
  • Output: exit code + failing test names + next diagnostic step.
Usage Guidance
This skill's behavior (safe command execution with preflight checks) is coherent and instruction-only (no downloads or env access). However, the package contains inconsistent metadata and branding that suggest it may not come from the claimed 'RedHat' source. Before installing: - Confirm the publisher: verify the owner ID and homepage outside the registry (contact source or use an official Red Hat channel if you expect an official Red Hat skill). - Inspect the SKILL.md yourself and ensure the agent will prompt for explicit confirmation before running any high-risk command; do not rely on the skill's text alone. - Test the skill in an isolated environment (throwaway VM or container) before running on sensitive systems. - Refuse or remove skills that impersonate known vendors or have inconsistent/garbled metadata (e.g., differing slugs, placeholder fields like 'System.Object[]'). If you need this functionality but cannot verify the publisher, consider implementing similar guarded command-execution logic locally or using a vetted plugin from a trusted source.
Capability Analysis
Type: OpenClaw Skill Name: axodus-command-execution Version: 1.0.0 The skill bundle defines a framework for an AI agent to execute terminal commands with explicit safety guardrails. The instructions in SKILL.md and command-execution.md prioritize risk classification, blocking destructive patterns (e.g., 'rm -rf', 'curl | sh'), and requiring user confirmation for high-risk actions. No evidence of malicious intent, data exfiltration, or harmful prompt injection was found.
Capability Assessment
Purpose & Capability
The declared purpose — running terminal commands with preflight checks and gating — aligns with the SKILL.md instructions. The skill requests no binaries, env vars, or installs, which is proportionate for an instruction-only command-execution helper. However, there are metadata inconsistencies: registry owner (kn741...) differs from _meta.json ownerId (redhat-agent-001), the public slug (axodus-command-execution) differs from _meta.json slug (command-execution), and the human-facing name includes 'RedHat' while source/homepage are unknown. These mismatches suggest potential impersonation or sloppy packaging that should be validated with the publisher.
Instruction Scope
The SKILL.md is narrowly scoped: it classifies risk, blocks high-risk patterns, prefers dry-runs, captures exit code/stdout/stderr, and requires explicit confirmation for destructive commands. It does not instruct the agent to read unrelated system files, environment variables, or to exfiltrate data to external endpoints. One minor gap: the file relies on the agent or user to provide explicit confirmation flows (it says 'Never run destructive commands without explicit user confirmation') but does not define how confirmations are obtained/audited; implementers should ensure the agent prompts the user and logs consent.
Install Mechanism
No install spec or code is included (instruction-only), so nothing is downloaded or written to disk by the skill itself — this is the lowest-install risk profile.
Credentials
The skill declares no required environment variables, credentials, or config paths, which is appropriate for a pure instruction-only command-execution helper. The SKILL.md likewise does not reference hidden environment variables or external tokens.
Persistence & Privilege
always is false and the skill is user-invocable; autonomous invocation is allowed (platform default) but not combined with elevated privileges or persistent system modifications in this package. There is no evidence the skill modifies other skills or system-wide settings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install axodus-command-execution
  3. After installation, invoke the skill by name or use /axodus-command-execution
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of command-execution skill for safe, auditable command runs. - Supports executing terminal commands with preflight risk checks and gating. - Requires specifying both the command and its purpose. - Classifies and blocks high-risk operations (e.g., recursive deletes, remote scripts) unless explicitly confirmed. - Preferentially uses dry-run flags to reduce risk. - Captures and summarizes results, checks expected effects, and proposes diagnostics on failure. - Enforces safety rules—no destructive or remote-script commands without explicit user review.
Metadata
Slug axodus-command-execution
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is RedHat Command Execution?

Execute terminal commands safely with preflight checks and risk gating. It is an AI Agent Skill for Claude Code / OpenClaw, with 74 downloads so far.

How do I install RedHat Command Execution?

Run "/install axodus-command-execution" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is RedHat Command Execution free?

Yes, RedHat Command Execution is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does RedHat Command Execution support?

RedHat Command Execution is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created RedHat Command Execution?

It is built and maintained by Mauricio Z. (@mzfshark); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments