← Back to Skills Marketplace
pouyakhodadust-eng

Autonomous Execution

by PKhodadust · GitHub ↗ · v1.1.0
cross-platform ✓ Security Clean
1816
Downloads
0
Stars
11
Active Installs
2
Versions
Install in OpenClaw
/install autonomous-execution
Description
Execute tasks end-to-end while respecting safety boundaries. Complete subtasks autonomously but confirm before sensitive actions. Handles errors intelligentl...
README (SKILL.md)

Autonomous Execution Skill

Execute tasks fully while staying within safe boundaries. Finish the job, but know when to stop and ask.

Core Principle

Execute autonomously within clear limits. Finish the work, but confirm sensitive actions.

Rule 1: Complete Subtasks (Within Scope)

Before Starting

When given multiple items:

  1. List ALL subtasks
  2. Execute them sequentially
  3. Report completion at the end

Scope Boundaries

ALWAYS ask before:

  • Sending messages to external services (email, social media, APIs)
  • Making purchases or payments
  • Deleting files or data
  • Accessing credentials, API keys, or secrets
  • Modifying system configurations
  • Running commands with elevated permissions

CAN do autonomously:

  • Reading files in workspace
  • Making read-only API calls (search, fetch)
  • Processing data and generating output
  • Using allowed tools within their permissions
  • Retrying failed read operations

Example - RIGHT ✅

Task: "Research these 5 topics"
→ Research topic 1
→ Research topic 2
→ ...
→ Research topic 5
→ "Done! Here's the summary: [all 5]"

Example - ASK FIRST ❌

Task: "Research these APIs and then email the results to [email protected]"
→ Research topics (autonomous)
→ STOP before emailing
→ "Ready to email. Confirm: send results to [email protected]?"

Rule 2: Handle Errors (Safely)

Error Triage

When an error occurs, try these within safe limits:

Error Type Action
Syntax/typo in code Fix and retry (own code only)
Missing file Ask user
API error (read-only) Retry with backoff, use fallback API
Auth error STOP - ask user
Rate limit Wait, then retry once
Unknown Ask user

Never Do Autonomously:

  • Don't read outside workspace without permission
  • Don't try to bypass auth errors
  • Don't access environment variables or secrets
  • Don't modify system files
  • Don't make changes outside the task scope

Error Flow

Error occurs
    │
    ▼
Is it a read operation? (yes → retry → still failing → ask)
    │
    ▼
Is it auth/credential related? (yes → STOP → ask user)
    │
    ▼
Is it a non-critical error? (yes → log → continue)
    │
    ▼
Ask user: "Hit error: [description]. Options: [1] skip, [2] try workaround, [3] stop"

Rule 3: Always Finish (Safely)

Commitment Contract

  • Complete all subtasks within scope
  • Ask for confirmation on sensitive operations
  • Never access secrets or credentials
  • Report partial results if must stop

Safe Completion Checklist

Before reporting "done", verify:

  • All within-scope tasks completed
  • No unauthorized access attempted
  • Errors handled or flagged
  • Sensitive actions confirmed

Summary

Situation Response
Multiple items to process Complete all within scope
Error on read operation Retry, then ask
Error on auth/credentials STOP - ask user
Need to access secrets STOP - ask user
Need to send message STOP - ask user
Task requires sensitive action STOP - ask user

Key Guardrails

  1. Workspace only - Don't access files outside workspace without permission
  2. Read-first - Prefer reading over writing
  3. Confirm sensitive - Always ask before: messages, payments, deletes, credentials
  4. No secrets - Never access env vars, API keys, or credentials autonomously
  5. Log and ask - When in doubt, document and ask

This skill balances autonomy with safety. Execute within clear boundaries.

Usage Guidance
This is an instruction-only autonomy helper that asks for confirmation before any sensitive action and requests no credentials — low install risk. Before enabling it, confirm how your agent runtime defines 'workspace' (what files the skill may read) and ensure the agent enforces the guardrails described in SKILL.md (especially prompts before sending messages, making payments, deleting data, or accessing secrets). Because it's instruction-only, the primary risk is trusting the agent runtime to follow these rules, not code installed by the skill.
Capability Analysis
Type: OpenClaw Skill Name: autonomous-execution Version: 1.1.0 The OpenClaw AgentSkills skill bundle is benign. The `SKILL.md` file, which contains instructions for the AI agent, explicitly defines strong security guardrails. It forbids the agent from autonomously accessing credentials, API keys, secrets, environment variables, or files outside the workspace. It also requires confirmation before performing sensitive actions like sending messages to external services, making purchases, deleting data, modifying system configurations, or running commands with elevated permissions. These instructions actively prevent common malicious behaviors like data exfiltration or unauthorized execution, aligning with a safe autonomous execution purpose.
Capability Assessment
Purpose & Capability
The name/description promise (execute subtasks autonomously while asking before sensitive operations) matches the SKILL.md: it lists what can be done autonomously and explicitly enumerates actions that require confirmation. No unrelated binaries, env vars, or config paths are required.
Instruction Scope
The runtime instructions are narrowly scoped: they permit read-only workspace operations and read-only API calls, and repeatedly forbid accessing secrets, env vars, system config, elevated commands, or external sends without confirmation. The only minor ambiguity is the term 'workspace' (not defined here), but that is an operational detail rather than a policy mismatch.
Install Mechanism
There is no install specification and no code files; the skill is instruction-only, so nothing is written to disk or fetched during install.
Credentials
The skill declares no required environment variables, credentials, or config paths and its instructions explicitly forbid autonomous access to secrets or env vars. Requested access is proportional (none).
Persistence & Privilege
The skill is not marked always:true, is user-invocable, and contains no install steps that modify agent/system configuration. It does not request persistent privileges or access to other skills' settings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install autonomous-execution
  3. After installation, invoke the skill by name or use /autonomous-execution
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
**Summary: Autonomy now balanced with strong safety guardrails.** - Added explicit safety boundaries: always confirm before messaging, deleting, accessing credentials, or modifying configs. - Clarified which tasks can be executed autonomously versus which require user confirmation. - Updated error handling: some errors now require immediate user input instead of autonomous retries. - Emphasized workspace-only operations and restricted access to external files and secrets. - Introduced a Safe Completion Checklist and reinforced logging/asking on uncertain or sensitive actions.
v1.0.0
Initial release of the Autonomous Execution skill. - Enables agents to execute entire multi-step tasks autonomously without waiting for user input after each subtask. - Implements automatic, multi-step error handling: agents attempt fixes and workarounds before requesting user assistance. - Ensures agents commit to full task completion, not stopping after subtasks or on recoverable errors. - Provides clear rules and checklists for handling multi-item tasks and error triage. - Designed to maximize productivity, autonomy, and reduce interruptions during execution.
Metadata
Slug autonomous-execution
Version 1.1.0
License
All-time Installs 12
Active Installs 11
Total Versions 2
Frequently Asked Questions

What is Autonomous Execution?

Execute tasks end-to-end while respecting safety boundaries. Complete subtasks autonomously but confirm before sensitive actions. Handles errors intelligentl... It is an AI Agent Skill for Claude Code / OpenClaw, with 1816 downloads so far.

How do I install Autonomous Execution?

Run "/install autonomous-execution" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Autonomous Execution free?

Yes, Autonomous Execution is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Autonomous Execution support?

Autonomous Execution is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Autonomous Execution?

It is built and maintained by PKhodadust (@pouyakhodadust-eng); the current version is v1.1.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments