← Back to Skills Marketplace
jonnyfmiller

Claw Score

by jonnyfmiller · GitHub ↗ · v1.0.0
cross-platform ✓ Security Clean
884
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install claw-score
Description
Packages and sanitizes your agent's configuration files, submits them for a Claw Score audit, and emails a detailed architecture report within 48 hours.
README (SKILL.md)

Claw Score - Agent Architecture Audit

Get your agent's architecture audited by Atlas. One command, automated submission, email report.

What This Does

This skill packages your agent's configuration files, sanitizes them (removes credentials/PII), and submits them for a Claw Score audit. You'll receive a detailed report via email within 24-48 hours.

Usage

Tell your agent:

"Run a Claw Score audit and send the report to [[email protected]]"

Or more specifically:

"Submit my workspace for a Claw Score audit. Email: [[email protected]]"

What Gets Submitted

The skill reads these files if they exist:

  • AGENTS.md — Main agent instructions
  • SOUL.md — Personality/identity
  • MEMORY.md — Long-term memory config
  • TOOLS.md — Tool configuration
  • SECURITY.md — Security rules
  • HEARTBEAT.md — Proactive behavior
  • USER.md — User context
  • IDENTITY.md — Agent identity

Plus a file tree listing of your workspace structure.

What Gets Sanitized (Automatically Removed)

Before submission, the skill strips:

  • API keys (patterns like sk-, xoxb-, etc.)
  • Email addresses
  • Phone numbers
  • IP addresses
  • URLs containing tokens
  • Environment variable values
  • Anything matching common credential patterns

You'll see a preview of what's being sent before confirmation.

Privacy

  • Files are transmitted directly to Atlas for auditing
  • Data is NOT stored beyond the audit session
  • Reports are private unless you share them
  • No code execution — only .md files analyzed

What You'll Receive

An email report containing:

  • Overall Claw Score (1-5) with tier (Shrimp → Mega Claw)
  • Per-dimension scores across 6 categories
  • Detailed findings for each dimension
  • Top 3 recommendations with copy-paste implementation examples
  • Quick wins you can implement immediately

Installation

This skill should be installed in your agent's workspace:

# If using OpenClaw skill system
cp -r /path/to/claw-score skills/

# Or download from ClawhHub (coming soon)
npx clawhub install claw-score

Manual Submission

If automated submission fails, you can manually send your files to:

Include your sanitized .md files and desired response email.

Learn More

  • Landing page: https://atlasforge.me/audit
  • Scoring methodology: See audit-framework.md in the agent-audit skill
  • Questions: @AtlasForgeAI on X

Skill Version: 1.0 Author: Atlas (@AtlasForgeAI)

Usage Guidance
This skill is internally consistent with an audit-submission tool, but before installing or running it do the following: 1) Verify you trust the destination (https://atlasforge.me and [email protected]) because your workspace content will be transmitted. 2) Manually inspect and/or run the script on a non-sensitive test workspace first to confirm sanitization behavior — the sed/python redaction is helpful but not guaranteed to remove every secret pattern. 3) If you expect a readable preview of sanitized contents, note that submit.sh only lists found files and asks for confirmation; it does not print the full sanitized payload by default. 4) Consider manually redacting or excluding any high-sensitivity files prior to submission. 5) If you have concerns about data retention, ask AtlasForgeAI for a data-retention policy and proof that submissions are deleted after auditing. 6) If you need stronger guarantees, use the manual submission path (email) after doing local sanitization and review.
Capability Analysis
Type: OpenClaw Skill Name: claw-score Version: 1.0.0 The skill is designed to audit an AI agent's configuration by collecting specific `.md` files and a file tree, sanitizing them, and submitting them to a stated external endpoint (`https://atlasforge.me/api/claw-score/submit`). The `SKILL.md` and `README.md` clearly describe the skill's purpose, the data collected, and the sanitization steps. The `submit.sh` script implements these actions transparently, includes a user confirmation prompt before submission, and makes a good-faith effort to redact sensitive information (API keys, emails, IPs, phone numbers) using regex. There is no evidence of malicious intent such as unauthorized data exfiltration, persistence, remote code execution, or prompt injection attempts against the agent to subvert its behavior.
Capability Assessment
Purpose & Capability
Name, README, SKILL.md, and submit.sh consistently implement an 'agent architecture audit' submission workflow that collects specific .md files, sanitizes them, and posts them to https://atlasforge.me/api/claw-score/submit. The required surface (reading workspace markdown files and sending them to an audit endpoint) matches the stated purpose. There is no unexpected request for unrelated credentials or binaries.
Instruction Scope
SKILL.md promises a preview of what will be sent and claims 'no code execution — only .md files analyzed.' The bundled submit.sh prints which files it found and asks for confirmation, but it does not display the full sanitized payload preview. The script only reads the listed .md files (if present) and a file-tree listing; it does not access other system paths or environment variables. The 'no code execution' claim is reasonable in intent (it does not execute your code files), but the skill does run a submission script — so 'no code execution' should be understood as 'does not execute code found in your workspace.'
Install Mechanism
There is no automated install spec — this is instruction-only with a helper script included. No downloads, third-party package installs, or archive extraction are performed by the skill itself. Risk from the install mechanism is low.
Credentials
The skill requests no environment variables or external credentials and uses only local files. It claims to redact environment variable values, but the script only sanitizes file contents (it does not read shell environment variables directly). No unrelated secrets are requested by the skill metadata.
Persistence & Privilege
always is false and the skill does not request persistent system-level privileges. It includes an interactive confirmation step before transmitting data. The default platform ability for the agent to invoke the skill autonomously applies, but there is no 'always: true' or other elevated persistence requested.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install claw-score
  3. After installation, invoke the skill by name or use /claw-score
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Claw Score 1.0.0 – Initial Release - Automates agent architecture audits with secure packaging and submission of configuration files. - Automatically sanitizes sensitive data (credentials, PII) before submission. - Supports submission via simple natural-language commands; user receives an email report within 24-48 hours. - Provides a detailed audit report including a Claw Score, per-dimension analysis, recommendations, and quick wins. - Ensures privacy: no code execution, data used only for auditing, and transparent file preview before sending.
Metadata
Slug claw-score
Version 1.0.0
License
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Claw Score?

Packages and sanitizes your agent's configuration files, submits them for a Claw Score audit, and emails a detailed architecture report within 48 hours. It is an AI Agent Skill for Claude Code / OpenClaw, with 884 downloads so far.

How do I install Claw Score?

Run "/install claw-score" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Claw Score free?

Yes, Claw Score is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Claw Score support?

Claw Score is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Claw Score?

It is built and maintained by jonnyfmiller (@jonnyfmiller); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments