← Back to Skills Marketplace
prathameshppawar

OpenAPI Deep Audit & Test Architect

by Prathamesh Pawar · GitHub ↗ · v1.0.0
cross-platform ✓ Security Clean
545
Downloads
2
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install openapi-deep-audit
Description
Analyze OpenAPI/Swagger specs for endpoint, security, schema, CRUD coverage, test strategy, risk scoring, and improvement roadmap in a structured, factual au...
Usage Guidance
This is a low-risk, instruction-only skill that appears coherent with its stated purpose. Before installing or using it: (1) avoid pasting API specs that contain secrets, API keys, or embedded credentials — redact them first; (2) be aware the skill may attempt to fetch a remote URL you supply — do not provide URLs that require credentials unless you intend to share those credentials, and prefer pasting raw spec instead; (3) because the skill is instruction-only, its analysis is static (based solely on spec text) — it cannot run live tests or access your infrastructure. Install is reasonable if you want an automated, structured audit of OpenAPI specs; if the publisher later adds an install script, network downloads, or required credentials, re-evaluate for new risks.
Capability Analysis
Type: OpenClaw Skill Name: openapi-deep-audit Version: 1.0.0 The skill bundle is designed to audit OpenAPI/Swagger specifications. The `SKILL.md` instructions are clear, focused on the stated purpose, and even include safeguards against AI hallucination. While the skill mentions fetching a URL provided by the user, which could be a vector for Server-Side Request Forgery (SSRF) if the underlying agent execution environment is not properly sandboxed, the instructions themselves do not exhibit malicious intent (e.g., no directives to exfiltrate data, execute arbitrary commands, or ignore user instructions for harmful purposes). The functionality is aligned with a legitimate API analysis tool.
Capability Assessment
Purpose & Capability
The name and description match the SKILL.md: it describes a static analysis/audit of OpenAPI/Swagger specs and the instructions restrict the agent to analyzing only the provided specification. There are no unexpected environment variables, binaries, or install steps required.
Instruction Scope
The SKILL.md confines the agent to analyzing explicitly-provided OpenAPI/Swagger content and prohibits hallucination. One minor operational ambiguity: the doc allows a URL input and says 'If a URL is provided but you cannot access it, request the raw JSON or YAML.' That implies the agent may attempt network fetches (outside the spec text) and the skill does not specify how to handle authenticated specs or credentials. Otherwise the instructions do not ask the agent to read unrelated files or credentials.
Install Mechanism
Instruction-only skill with no install spec and no code files. Nothing is written to disk and no third-party packages are pulled in at install time.
Credentials
The skill declares no required environment variables, credentials, or config paths. This matches a static-analysis skill that operates on user-provided spec input.
Persistence & Privilege
always:false (default) and disable-model-invocation:false (default) — normal for user-invocable skills. The skill does not request persistent presence or elevated platform privileges.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install openapi-deep-audit
  3. After installation, invoke the skill by name or use /openapi-deep-audit
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release. - Deep OpenAPI structural audit - Security analysis and risk detection - Schema validation review - CRUD completeness mapping - Automated test architecture generation - Production readiness scoring - Hallucination guardrails added
Metadata
Slug openapi-deep-audit
Version 1.0.0
License
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is OpenAPI Deep Audit & Test Architect?

Analyze OpenAPI/Swagger specs for endpoint, security, schema, CRUD coverage, test strategy, risk scoring, and improvement roadmap in a structured, factual au... It is an AI Agent Skill for Claude Code / OpenClaw, with 545 downloads so far.

How do I install OpenAPI Deep Audit & Test Architect?

Run "/install openapi-deep-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is OpenAPI Deep Audit & Test Architect free?

Yes, OpenAPI Deep Audit & Test Architect is completely free (open-source). You can download, install and use it at no cost.

Which platforms does OpenAPI Deep Audit & Test Architect support?

OpenAPI Deep Audit & Test Architect is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created OpenAPI Deep Audit & Test Architect?

It is built and maintained by Prathamesh Pawar (@prathameshppawar); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments