← Back to Skills Marketplace
russellfei

Vibe Coding Best Practices v3.0

by russellfei · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
487
Downloads
2
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install vibe-3k
Description
Provides a comprehensive AI-assisted development workflow with PLAN/ACT separation, multi-agent collaboration, fault recovery, and security code review best...
Usage Guidance
This skill is a coherent, instruction-only best-practices guide for AI-assisted development and appears to be what it claims. Before using its example scripts or following its automation recipes: 1) review any proposed git commands (git reset --hard, auto-push hooks) on a backup or test repo to avoid accidental data loss or unintended pushes; 2) do not enable auto-push/post-commit hooks unless the remote is trusted; 3) audit any files the agent will be instructed to read (LOG.md, memory/tasks/, status/) to ensure they contain no secrets or sensitive data; 4) follow the guide's own security red lines (manual review for auth/payment/DB schema/migrations); and 5) if you let an agent run these commands autonomously, restrict its permissions and monitor operations. These precautions will keep the guidance useful without exposing your code or secrets.
Capability Analysis
Type: OpenClaw Skill Name: vibe-3k Version: 1.0.0 The skill bundle provides comprehensive best practices for AI-assisted development, including strong recommendations for human review in security-critical areas. However, several shell scripts, particularly the 'Leader Summarization Script' in `references/03-multi-agent.md` and the `post-commit` hook in `references/04-emergency.md`, process agent-generated status files or automate Git pushes. While intended for benign purposes like progress tracking and version control, these scripts demonstrate a lack of robust input sanitization when processing data from other agents and could facilitate the exfiltration of malicious code if an agent were compromised, indicating vulnerabilities and risky capabilities without clear malicious intent.
Capability Assessment
Purpose & Capability
Name/description (Vibe Coding Best Practices) match the content: workflow guidance, multi-agent orchestration, recovery SOPs, and security checklists. The skill declares no binaries, env vars, or installs—consistent with an instruction-only guideline.
Instruction Scope
SKILL.md explicitly instructs agents (in PLAN prompts) to read repository context (read_file/search_files), consult LOG.md, status/*.status, worktree dirs, and use git commands and example scripts. Those file and command targets are appropriate for a developer workflow, but they do grant the agent broad access to repository contents (including any secrets accidentally committed).
Install Mechanism
No install spec or external downloads; instruction-only skill — lowest install risk.
Credentials
The skill requests no environment variables or credentials. It references services/tools (Claude, Kimi, OpenClaw, Sentry) only as recommendations; no unrelated secrets are demanded.
Persistence & Privilege
Skill flags: always:false and agent invocation allowed (normal). The guide suggests creating repo hooks (post-commit auto-push) and example persistent PowerShell timers — these are user-side setup suggestions and could create persistent behavior or automatic network pushes if implemented, so users should review before applying.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install vibe-3k
  3. After installation, invoke the skill by name or use /vibe-3k
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: 10 core principles, PLAN/ACT separation, multi-agent collaboration, disaster recovery, >24h task management, Win11/PowerShell support
Metadata
Slug vibe-3k
Version 1.0.0
License
All-time Installs 1
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Vibe Coding Best Practices v3.0?

Provides a comprehensive AI-assisted development workflow with PLAN/ACT separation, multi-agent collaboration, fault recovery, and security code review best... It is an AI Agent Skill for Claude Code / OpenClaw, with 487 downloads so far.

How do I install Vibe Coding Best Practices v3.0?

Run "/install vibe-3k" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Vibe Coding Best Practices v3.0 free?

Yes, Vibe Coding Best Practices v3.0 is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Vibe Coding Best Practices v3.0 support?

Vibe Coding Best Practices v3.0 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Vibe Coding Best Practices v3.0?

It is built and maintained by russellfei (@russellfei); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments