← Back to Skills Marketplace
Max Content Machine
by
sonnenberglauramarie-afk
· GitHub ↗
· v1.0.0
440
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install max-content-machine
Description
Autonomous 24/7 affiliate content production pipeline for OpenClaw agents. Orchestrates research → brief → article writing → quality gate → deploy. Supports...
Usage Guidance
Do not install or enable this skill until you validate a few items: 1) Obtain the full source repository or the actual pipeline scripts (quality_gate.py, pipeline_controller.py, post_article.py, etc.) and review them for hidden network endpoints, credential exfiltration, or obfuscated logic. 2) Require the skill to declare exact environment variables it needs (e.g., CLOUDFLARE_API_TOKEN, CLOUDFLARE_ACCOUNT_ID, AMAZON_AFFILIATE_TAG) and explain where/how they are stored (avoid embedding secrets in plaintext files). 3) Confirm which Cloudflare account will be used and limit the token scope to only what is needed (deploy & cache-purge). 4) Run the pipeline in an isolated/test environment first and audit network calls and file writes. 5) If you must allow autonomous invocation, restrict its permissions and monitor its activity (audit logs, rotated tokens). Because the skill can publish content and use affiliate links, also verify it complies with your legal/policy requirements for automated publishing and affiliate disclosures.
Capability Analysis
Type: OpenClaw Skill
Name: max-content-machine
Version: 1.0.0
The skill bundle describes an automated affiliate content pipeline for research, writing, and deployment to Cloudflare. While it requests high-privilege tools such as Bash and WebFetch in SKILL.md, these are consistent with the stated goals of executing deployment scripts (wrangler) and performing SERP analysis; no evidence of malicious intent, data exfiltration, or prompt injection was found in the provided files.
Capability Assessment
Purpose & Capability
The claimed purpose (automated research→write→quality→deploy pipeline) aligns with the listed actions (running quality checks, using wrangler to deploy to Cloudflare, updating sitemaps). However the skill does not include any of the scripts it instructs the agent to run (quality_gate.py, pipeline_controller.py, post_article.py, etc.), and the registry metadata declares no required env vars or binaries even though Cloudflare and Amazon affiliate integration are central to the stated purpose. That mismatch is unexpected but not impossible (the skill may rely on the user's existing repo), so it is a design inconsistency rather than definitive malice.
Instruction Scope
SKILL.md instructs the agent to read and write many local files (KEYWORD-BACKLOG.md, article templates, sitemap), run local scripts (python3 quality_gate.py), and perform network actions (wrangler deploy, cache purge). It also tells the user to "Set up Cloudflare API token" and to configure Amazon affiliate tags. The instructions are specific about actions but do not say how secrets should be provided or protected. Because the skill is instruction-only and references non-included scripts, an agent acting on these instructions could access arbitrary workspace files and publish content using external credentials—the scope is broad and the absence of included code makes the runtime behavior opaque.
Install Mechanism
There is no install spec and no code files; this is instruction-only. That minimizes supply-chain install risk (nothing will be downloaded or written by an installer), but it also means the scanner had no code to analyze and the agent will rely on user-provided scripts and system tooling (python, wrangler).
Credentials
The instructions require a Cloudflare API token and Amazon affiliate tags for normal operation, but the skill metadata declares no required environment variables or primary credential. This omission is inconsistent and risky: the agent will need credentials to deploy and insert affiliate links, yet there is no guidance in the skill about how to supply or scope those credentials, and no explicit required env vars were declared. That increases the chance of misconfiguration or accidental credential exposure.
Persistence & Privilege
The skill is not marked always:true and uses default autonomous invocation settings. That is normal for an automation skill that is expected to run pipeline tasks. There is no evidence the skill attempts to modify other skills or agent-wide configuration. Still, because it performs publishing actions, granting it autonomous execution should be considered carefully.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install max-content-machine - After installation, invoke the skill by name or use
/max-content-machine - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Autonomous 24/7 affiliate content production pipeline with Cloudflare Workers deploy
Metadata
Frequently Asked Questions
What is Max Content Machine?
Autonomous 24/7 affiliate content production pipeline for OpenClaw agents. Orchestrates research → brief → article writing → quality gate → deploy. Supports... It is an AI Agent Skill for Claude Code / OpenClaw, with 440 downloads so far.
How do I install Max Content Machine?
Run "/install max-content-machine" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Max Content Machine free?
Yes, Max Content Machine is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Max Content Machine support?
Max Content Machine is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Max Content Machine?
It is built and maintained by sonnenberglauramarie-afk (@sonnenberglauramarie-afk); the current version is v1.0.0.
More Skills