← Back to Skills Marketplace
52yuanchangxing

Env Diff Explainer

by vx:17605205782 · GitHub ↗ · v1.0.0 · MIT-0
darwinlinuxwin32 ✓ Security Clean
171
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install env-diff-explainer
Description
比较 dev/staging/prod 配置差异,并把技术差异翻译成业务风险。;use for env, config, diff workflows;do not use for 输出敏感密钥值, 直接覆盖配置.
README (SKILL.md)

环境差异解释器

你是什么

你是“环境差异解释器”这个独立 Skill,负责:比较 dev/staging/prod 配置差异,并把技术差异翻译成业务风险。

Routing

适合使用的情况

  • 比较 dev 和 prod 的配置差异
  • 解释这些差异会造成什么影响
  • 输入通常包含:多个环境配置文件或文本
  • 优先产出:差异摘要、高风险差异、验证步骤

不适合使用的情况

  • 不要输出敏感密钥值
  • 不要直接覆盖配置
  • 如果用户想直接执行外部系统写入、发送、删除、发布、变更配置,先明确边界,再只给审阅版内容或 dry-run 方案。

工作规则

  1. 先把用户提供的信息重组成任务书,再输出结构化结果。
  2. 缺信息时,优先显式列出“待确认项”,而不是直接编造。
  3. 默认先给“可审阅草案”,再给“可执行清单”。
  4. 遇到高风险、隐私、权限或合规问题,必须加上边界说明。
  5. 如运行环境允许 shell / exec,可使用:
    • python3 "{baseDir}/scripts/run.py" --input \x3C输入文件> --output \x3C输出文件>
  6. 如当前环境不能执行脚本,仍要基于 {baseDir}/resources/template.md{baseDir}/resources/spec.json 的结构直接产出文本。

标准输出结构

请尽量按以下结构组织结果:

  • 差异摘要
  • 高风险差异
  • 潜在业务影响
  • 建议对齐项
  • 可接受差异
  • 验证步骤

本地资源

  • 规范文件:{baseDir}/resources/spec.json
  • 输出模板:{baseDir}/resources/template.md
  • 示例输入输出:{baseDir}/examples/
  • 冒烟测试:{baseDir}/tests/smoke-test.md

安全边界

  • 报告会尽量掩码疑似敏感信息。
  • 默认只读、可审计、可回滚。
  • 不执行高风险命令,不隐藏依赖,不伪造事实或结果。
Usage Guidance
This skill appears to do what it says: read local config files or directories and produce a human-reviewable diff/risk report. Before you run it or allow the agent to invoke it, consider: 1) Do not point the skill at your entire filesystem or at directories that contain production secrets (e.g., /, home, repository roots with credentials). The script will recursively read many file types. 2) The script attempts to mask 'secret-like' patterns but only truncates/masks parts of matched tokens (it may still reveal prefix characters), and other sensitive artifacts (URLs, filenames) may appear unmasked. Treat outputs as potentially sensitive. 3) Prefer running in an isolated or sanitized workspace (copy files with secrets redacted or run against sanitized copies). Use --dry-run first and review stdout rather than automatically writing or sharing outputs. 4) Review scripts/run.py yourself if you need higher assurance — it is self-contained and does not perform network calls, but it will read and include snippets from files you point it at. 5) The skill is not requesting credentials or network access; keep credentials out of the input and follow the SKILL.md guidance about not outputting secret values. If you need the skill to run autonomously, restrict its allowed input paths and audit its outputs for leaked data.
Capability Analysis
Type: OpenClaw Skill Name: env-diff-explainer Version: 1.0.0 The 'env-diff-explainer' skill is a legitimate utility designed to audit configuration differences across environments. The core logic in `scripts/run.py` includes a security-focused scanner that identifies high-risk patterns (such as 'curl|bash' or hardcoded secrets) and masks sensitive information before reporting. The skill's instructions in `SKILL.md` and `README.md` emphasize read-only operations, manual review, and risk mitigation, with no evidence of malicious intent, data exfiltration, or unauthorized execution.
Capability Assessment
Purpose & Capability
Name/description match the included resources and script. The skill only requires python3 and includes a script (scripts/run.py), spec/template resources, examples, and tests that implement pattern-based auditing and report generation. All requested artifacts are proportionate to a local 'env diff' auditing tool.
Instruction Scope
SKILL.md stays within the stated purpose and explicitly recommends read-only, review-first behavior. The runtime instructions allow running scripts/run.py against a file or directory; the script will recursively read many text file types in the provided path (md, json, yaml, py, sh, etc.). That behavior is expected for an audit tool but means the agent (or an operator running the script) may expose any file content under the target path. The skill warns about not outputting sensitive keys and the script attempts to mask 'secret_like' patterns, but masking is limited (see user guidance).
Install Mechanism
No install spec; only python3 is required and the script uses the Python standard library. Nothing is downloaded or executed from remote URLs; the repository is self-contained. This is a low-risk install posture.
Credentials
The skill requests no environment variables, no credentials, and no config paths. That aligns with a local-only auditing tool. There are no unexpected secret/API requirements.
Persistence & Privilege
always is false and the skill does not request persistent system-wide privileges. It does not modify other skills or system configs. Running the script can write output files if given an --output path, but that is normal and controlled by the operator.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install env-diff-explainer
  3. After installation, invoke the skill by name or use /env-diff-explainer
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of env-diff-explainer. - Compares configuration differences between dev, staging, and prod environments. - Translates technical configuration differences into business risk explanations. - Outputs include: difference summary, high-risk differences, potential business impact, recommended alignments, acceptable differences, and verification steps. - Explicitly avoids outputting sensitive keys or directly overwriting configs; only review/dry-run suggestions are provided for high-risk actions. - Prioritizes structured, reviewable results and highlights unresolved or risky areas. - Supports both local script execution (via python3) and static file-based workflows.
Metadata
Slug env-diff-explainer
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Env Diff Explainer?

比较 dev/staging/prod 配置差异,并把技术差异翻译成业务风险。;use for env, config, diff workflows;do not use for 输出敏感密钥值, 直接覆盖配置. It is an AI Agent Skill for Claude Code / OpenClaw, with 171 downloads so far.

How do I install Env Diff Explainer?

Run "/install env-diff-explainer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Env Diff Explainer free?

Yes, Env Diff Explainer is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Env Diff Explainer support?

Env Diff Explainer is cross-platform and runs anywhere OpenClaw / Claude Code is available (darwin, linux, win32).

Who created Env Diff Explainer?

It is built and maintained by vx:17605205782 (@52yuanchangxing); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments