← Back to Skills Marketplace
400
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install oc-full-ops-audit-recipe
Description
End-to-end OpenClaw audit and remediation recipe for gateway, channels, nodes, security, and memory sync.
Usage Guidance
This skill is a coherent, high-level audit recipe and appears benign, but it is intentionally vague about two important things: making changes and where results are stored. Before installing or running it, confirm: (1) where 'daily memory' and 'shared memory' live, who can read them, how long entries are retained, and whether outputs will be redacted to avoid leaking secrets; (2) that the agent will require and request explicit, itemized approval before performing any disruptive fixes, and that any credentials needed for remediation are managed and consented to separately; (3) that rollback points and verification steps are implemented so changes can be safely reverted. If you want a safer baseline, restrict this skill to read-only checks until remediation procedures, credential handling, and memory/retention policies are explicitly documented.
Capability Analysis
Type: OpenClaw Skill
Name: oc-full-ops-audit-recipe
Version: 0.1.0
The skill bundle is classified as suspicious due to the broad and high-privilege instructions given to the AI agent in `SKILL.md`. While lacking explicit malicious intent, the instructions to 'Apply fixes' and perform 'remediation' across 'gateway, channels, nodes, security, and memory sync' grant the agent significant modification capabilities. This represents a high-risk operation, as an agent executing such commands could potentially cause disruptive changes or unintended side effects if not perfectly constrained, even with the stated safeguards like 'explicit approval'.
Capability Assessment
Purpose & Capability
Name and description describe an end-to-end audit recipe and the SKILL.md contains a concise, matching workflow (baseline, classify, apply fixes, re-check, document). There are no extra binaries, env vars, or installs that would be unexpected for this purpose.
Instruction Scope
The instructions are high-level and remain within the scope of an audit recipe. However, two steps need clarification: (1) 'Apply fixes in risk order with rollback points' implies performing potentially disruptive actions but provides no guardrails, required credentials, or explicit approval step; (2) 'Write outcomes to daily memory + shared memory' instructs persistence of results but does not define what memory stores are, retention, or redaction rules. Both are scope-expanding details that should be explicit.
Install Mechanism
This is an instruction-only skill with no install spec and no code files — lowest-risk install profile. Nothing will be written or fetched by an installer during skill installation.
Credentials
The skill declares no required environment variables or credentials, which is consistent with a read-only audit. However, because it instructs applying fixes (which typically require elevated credentials) and writing results to shared memory, the absence of declared credential requirements is a gap — any implementation that actually performs fixes will need credentials that aren't described here.
Persistence & Privilege
always:false and user-invocable:true are appropriate. Still, the SKILL.md explicitly directs writing outcomes to persistent 'daily memory' and 'shared memory', which could cause retention of sensitive audit findings. Combine that with the platform's default autonomous invocation and you should confirm memory access controls, retention, and whether the skill will ask for explicit approval before making changes.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install oc-full-ops-audit-recipe - After installation, invoke the skill by name or use
/oc-full-ops-audit-recipe - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial release (sanitized)
Metadata
Frequently Asked Questions
What is OC Full Ops Audit Recipe?
End-to-end OpenClaw audit and remediation recipe for gateway, channels, nodes, security, and memory sync. It is an AI Agent Skill for Claude Code / OpenClaw, with 400 downloads so far.
How do I install OC Full Ops Audit Recipe?
Run "/install oc-full-ops-audit-recipe" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OC Full Ops Audit Recipe free?
Yes, OC Full Ops Audit Recipe is completely free (open-source). You can download, install and use it at no cost.
Which platforms does OC Full Ops Audit Recipe support?
OC Full Ops Audit Recipe is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OC Full Ops Audit Recipe?
It is built and maintained by xyezir (@xyezir); the current version is v0.1.0.
More Skills