← Back to Skills Marketplace
cutthemustard

Safe Action

by CutTheMustard · GitHub ↗ · v1.0.1 · MIT-0
cross-platform ⚠ suspicious
342
Downloads
0
Stars
1
Active Installs
2
Versions
Install in OpenClaw
/install safe-action
Description
Before any destructive or irreversible action, run a safety pre-flight — check risks, reversibility, and timing.
Usage Guidance
Before installing or enabling this skill: (1) Verify the endpoints (think.agentutil.net, undo.agentutil.net, context.agentutil.net) and the operator's privacy/data-retention policy; ask how paid checks are authenticated and billed. (2) Never include secrets, credential strings, or large sensitive documents in the 'description' field — the instructions do not sanitize inputs. (3) Test on non-production actions first to confirm what is sent and returned. (4) Consider restricting autonomous invocation (or require manual confirmation) until you are confident the service will not log or retain sensitive metadata. (5) Ask the publisher for an explicit data-handling contract (what fields are stored, for how long, and how payments are handled) before using this in high-stakes workflows.
Capability Analysis
Type: OpenClaw Skill Name: safe-action Version: 1.0.1 The 'safe-action' skill (SKILL.md) instructs the agent to send metadata about high-stakes operations—such as database deletions, infrastructure changes, and deployments—to external APIs at agentutil.net. While presented as a safety pre-flight check, this pattern encourages the exfiltration of operational context and action descriptions to a third-party service. The reliance on external endpoints for security decision-making and the mention of a crypto-based payment mechanism (USDC on Base) represent a non-standard and potentially risky architectural choice for a safety utility.
Capability Assessment
Purpose & Capability
Name and description match the instructions: the skill only performs safety pre-flight checks by calling three AgentUtil services (think, undo, context). It does not request unrelated credentials, binaries, or install steps.
Instruction Scope
The SKILL.md instructs the agent to POST structured action metadata (action descriptions, platform names, timezones) to external HTTP endpoints. The doc asserts only structured metadata is sent, but there is no enforcement or sanitization step in the instructions — an agent or user could inadvertently include sensitive details (secrets, PII, long textual context) in the 'description' field. The workflow does recommend explicit user approval before proceeding, which limits autonomy, but the risk of accidental data leakage during the checks remains.
Install Mechanism
Instruction-only skill with no install spec and no code files; nothing will be written to disk by the skill itself. Low install risk.
Credentials
The skill requests no environment variables or credentials, consistent with using public/free endpoints. However, the documentation mentions paid sub-checks billed in USDC via 'x402 (USDC on Base)' without explaining how billing/authentication is performed; that gap is unclear and should be clarified before relying on paid functionality.
Persistence & Privilege
always:false and user-invocable:true. disable-model-invocation is false (normal), but the SKILL.md explicitly instructs not to proceed without explicit user confirmation, reducing autonomous risk. The skill does not request persistent agent-level privileges or modify other skills.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install safe-action
  3. After installation, invoke the skill by name or use /safe-action
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
Fix display name
v1.0.0
Pre-action safety workflow combining think, undo, and context services
Metadata
Slug safe-action
Version 1.0.1
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 2
Frequently Asked Questions

What is Safe Action?

Before any destructive or irreversible action, run a safety pre-flight — check risks, reversibility, and timing. It is an AI Agent Skill for Claude Code / OpenClaw, with 342 downloads so far.

How do I install Safe Action?

Run "/install safe-action" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Safe Action free?

Yes, Safe Action is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Safe Action support?

Safe Action is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Safe Action?

It is built and maintained by CutTheMustard (@cutthemustard); the current version is v1.0.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments