← Back to Skills Marketplace
djc00p

Rails CI Fixer

by Deonte Cooper · GitHub ↗ · v1.1.4 · MIT-0
linuxdarwin ⚠ suspicious
375
Downloads
0
Stars
1
Active Installs
11
Versions
Install in OpenClaw
/install rails-ci-fixer
Description
Autonomously fix failing CI on Rails PRs using a tiered escalation loop. Use this skill whenever a Rails pull request has failing CI — RSpec failures, RuboCo...
Usage Guidance
This skill appears to do what it says, but it runs repository tests and can execute arbitrary code from the repo. Only use it on repositories you own or fully trust. If you install or run it: 1) use a fine-grained GH personal access token scoped to just the repo (actions: read, contents: write), set an expiration, and rotate/revoke after use; 2) run the agent in an isolated user account, container, or VM when operating on unfamiliar code; 3) enforce branch protection on main and review diffs before merging (the skill pushes only to feature branches, but you should still review automated commits); 4) note the small metadata inconsistency (skill declares no primary credential in registry metadata but requires GH_TOKEN in runtime instructions) and confirm the platform will prompt for the GH_TOKEN appropriately. If you want higher assurance, request an explicit listing of required runtimes (rspec usage is via bundle exec) and confirmation that the agent will not accept run_id or other inputs from untrusted external sources.
Capability Analysis
Type: OpenClaw Skill Name: rails-ci-fixer Version: 1.1.4 The skill automates Rails CI fixes by executing shell commands, running test suites (bundle exec rspec), and pushing code to GitHub repositories. While these actions are aligned with its stated purpose and the documentation (SKILL.md, references/security.md) includes explicit security warnings and mitigations—such as treating CI logs as untrusted data to prevent prompt injection—the inherent risk of arbitrary code execution and repository write access via an AI agent warrants a suspicious classification. No evidence of intentional malice, data exfiltration, or obfuscation was found.
Capability Tags
requires-oauth-token
Capability Assessment
Purpose & Capability
Name/description (fix Rails CI) matches the declared requirements: uses gh/git/bundle/rubocop and needs GH_TOKEN to inspect runs and push fixes to a feature branch. The skill explicitly documents why these tools/credentials are needed.
Instruction Scope
Instructions explicitly call for pulling CI logs via gh, running tests locally with `bundle exec rspec`, running rubocop, committing fixes to a feature branch, and escalating to stronger models if needed. Running test suites executes repository code (acknowledged in the skill). The skill also instructs spawning a debug sub-agent that injects temporary debug statements to reproduce failures — that behavior is within the stated purpose but increases risk because it executes arbitrary code locally. The skill documents constraints (never commit debug statements, never push to main).
Install Mechanism
Instruction-only skill with no install spec and no downloaded artifacts. No installers, remote archives, or obscure URLs are present — lowest-risk install posture for this kind of tool.
Credentials
Only a single env var (GH_TOKEN) is requested, which is proportionate for a tool that reads Actions logs and pushes feature-branch commits. The SKILL.md provides guidance to use a fine-grained repo-scoped token with limited scopes. Minor inconsistency: registry metadata lists "Primary credential: none" while the runtime instructions and metadata block in SKILL.md require GH_TOKEN as the credential.
Persistence & Privilege
No 'always' flag, no install-time persistence, and the skill limits pushes to feature branches only. Autonomous invocation is allowed (platform default) but not combined with elevated persistent privileges.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install rails-ci-fixer
  3. After installation, invoke the skill by name or use /rails-ci-fixer
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.4
Fix: replace bare code blocks with ```text for consistent rendering
v1.1.3
Security: Added explicit trusted-repo-only warning and operational risk acknowledgment for running bundle exec rspec locally
v1.1.2
Fix: Quoted description field so YAML parser correctly picks up metadata/clawdbot runtime
v1.1.1
Fix: Added clawdbot runtime metadata with emoji, required bins, env vars, and OS support
v1.1.0
Refactor: Slimmed SKILL.md significantly — security content moved to references/security.md. Sharper description for better triggering. Cleaner fix loop structure. Same functionality, less token bloat.
v1.0.5
Docs: Added security classification note explaining why automated scanners flag the skill and what mitigations are in place
v1.0.4
Docs: Added pre-install security checklist — GH_TOKEN scoping, debug statement lifecycle (never committed), audit trail, and recommended branch protection setup
v1.0.3
Fix: Declare required binaries (gh, git, bundle, rubocop) and GH_TOKEN in frontmatter metadata so registry can surface requirements automatically
v1.0.2
Security: Declared required binaries (gh, git, bundle, rspec, rubocop), credential requirements (GH_TOKEN, least-privilege repo scope), and explicit push policy (feature branch only, never main, never merge)
v1.0.1
Security: Added prompt injection guard — CI log content is treated as data only, never as instructions
v1.0.0
Initial release — tiered CI fix loop for Rails projects with RSpec, RuboCop, build/env failure detection, and model-agnostic escalation strategy
Metadata
Slug rails-ci-fixer
Version 1.1.4
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 11
Frequently Asked Questions

What is Rails CI Fixer?

Autonomously fix failing CI on Rails PRs using a tiered escalation loop. Use this skill whenever a Rails pull request has failing CI — RSpec failures, RuboCo... It is an AI Agent Skill for Claude Code / OpenClaw, with 375 downloads so far.

How do I install Rails CI Fixer?

Run "/install rails-ci-fixer" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Rails CI Fixer free?

Yes, Rails CI Fixer is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Rails CI Fixer support?

Rails CI Fixer is cross-platform and runs anywhere OpenClaw / Claude Code is available (linux, darwin).

Who created Rails CI Fixer?

It is built and maintained by Deonte Cooper (@djc00p); the current version is v1.1.4.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments