← Back to Skills Marketplace
danillo7

Founder Legal Copilot

by Danillo Costa · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
122
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install founder-legal-copilot
Description
Legal copilot that guides founders from incorporation to exit with 27 legal deliverables across 5 startup phases
README (SKILL.md)

Founder Legal Copilot

A legal intelligence system for startup founders. Covers 27 legal deliverables across 5 startup phases — from incorporation to exit — using RAG-grounded analysis on verified legal templates from YC, NVCA, and Orrick.

Disclaimer: This skill produces educational legal analysis and document drafts. It is not a substitute for advice from a licensed attorney. Always have a qualified lawyer review documents before signing.

When to Use

Use this skill when a founder needs to:

  • Generate a SAFE note for a pre-seed round quickly and accurately
  • Review a contract for hidden risks before signing
  • Run a legal health check before a fundraise or acquisition conversation
  • Conduct lightweight due diligence on a counterparty, acquirer, or key hire

Do not use this skill for:

  • Court filings or litigation strategy
  • Tax advice (refer to a CPA)
  • Employment disputes in progress
  • Regulated industries (fintech licenses, healthcare HIPAA specifics, securities broker-dealer)

Prerequisites

Environment Variables

Copy .env.example to .env and populate:

cp .env.example .env

Required keys:

Variable Purpose
FRIENDLIAI_API_KEY Primary inference (GLM-5 via Friendly.ai)
CONTEXTUAL_AI_API_KEY RAG-grounded contract analysis
APIFY_API_TOKEN Live SEC/corporate records scraping
REDIS_URL Persistent deal memory across sessions
ELEVENLABS_API_KEY Voice narration (optional)
CIVIC_CLIENT_ID Auth and PII scrubbing

OpenClaw Plugins

Install required plugins before running:

openclaw plugin install redis-agent-memory
openclaw plugin install civic-nexus
openclaw mcp add apify https://mcp.apify.com

Workflow

Feature 1: SAFE Generator

Generates a complete, execution-ready Simple Agreement for Future Equity based on the YC Post-Money SAFE template (2018 revision).

Input:

/safe-generator
  --amount 500000
  --valuation-cap 8000000
  --discount 20
  --mfn true
  --pro-rata true
  --company "Acme Corp (Delaware C-Corp)"
  --investor "Sequoia Scout Fund"

Steps:

  1. Skill validates entity type (must be Delaware C-Corp for standard SAFE)
  2. Contextual AI grounds the generation against the YC template library
  3. Parameters are injected into templates/safe-post-money.md
  4. Risk flags are surfaced: unusual caps, missing pro-rata, MFN conflicts
  5. Output is rendered as a complete markdown document ready for PDF export
  6. Session data is stored in Redis for future reference (deal history)

Output: Complete SAFE document + risk summary + recommended next steps

Common flags:

  • --mfn: Most Favored Nation clause (standard for first checks)
  • --pro-rata: Pro-rata rights in next round
  • --discount: Discount rate (0-30%; typical: 15-20%)

Feature 2: Contract Reviewer

Analyzes any contract for founder-hostile terms. Compares against YC, NVCA, and Orrick baseline templates.

Input:

/contract-review --file contract.pdf
# or pipe text directly
/contract-review --text "$(cat term-sheet.md)"

Steps:

  1. Document is parsed and chunked
  2. Civic plugin scrubs any PII before sending to inference
  3. Contextual AI compares against standard templates (Cooley GO, Orrick)
  4. Eight risk dimensions are scored independently
  5. Output JSON includes risk level, flagged clauses, and plain-English explanations
  6. Recommendations prioritized by severity (red > yellow > green)

Risk dimensions analyzed:

  • Liability caps and indemnification scope
  • Termination triggers and notice periods
  • IP ownership and work-for-hire language
  • Non-compete and non-solicitation scope
  • Governing law and jurisdiction
  • Arbitration vs. litigation election
  • Assignment rights (change of control)
  • Representations and warranties

Output format:

{
  "risk_level": "yellow",
  "score": 68,
  "flags": [...],
  "recommendations": [...],
  "confidence": 0.91
}

Feature 3: Legal Health Check

Runs a 25-item legal checklist against the founder's described company state. Produces a scored report with prioritized remediation steps.

Input:

/health-check --stage seed --jurisdiction delaware

The skill will interactively ask about each item, or accept a pre-filled JSON:

/health-check --answers health-answers.json

Checklist categories:

  • Entity and formation (items 1-5)
  • Founder agreements and equity (items 6-10)
  • IP protection (items 11-14)
  • Compliance and governance (items 15-20)
  • Fundraising readiness (items 21-25)

Scoring:

  • Each item: 0-4 points
  • Total: /100
  • Bands: Critical (0-40), Needs Work (41-60), Good (61-80), Excellent (81-100)

Output: Scored report, prioritized to-do list, estimated attorney cost to remediate each gap

Feature 4: Due Diligence

Pulls live corporate data via Apify MCP (SEC EDGAR, state records, bankruptcy databases) and produces a structured diligence report.

Input:

/due-diligence
  --entity "Acme Corp"
  --state "Delaware"
  --ein "12-3456789"
  --type acquirer

Steps:

  1. Apify scrapes SEC EDGAR for any public filings
  2. State corporation database queried for active status, officers, registered agent
  3. Bankruptcy and UCC lien databases checked
  4. Tax lien records reviewed
  5. All findings compiled into structured report with red flag prioritization
  6. Redis stores the report for follow-up sessions

Data sources used:

  • SEC EDGAR full-text search
  • Delaware Division of Corporations
  • PACER bankruptcy records (via Apify)
  • UCC filing databases

Output: Structured diligence report with findings, red flags (sorted by severity), and recommended follow-up actions

Patterns

Deal Memory (Redis)

Every SAFE generated and contract reviewed is stored in the Redis memory plugin with the deal name as the key. To recall a previous deal:

/recall-deal --name "Acme Series A"

This enables multi-session deal tracking without re-uploading documents.

Multilingual Output

All four features support output in English, Spanish, Portuguese, and Mandarin:

/safe-generator ... --lang pt
/contract-review ... --lang es

Batch Mode

Review multiple contracts in a single session:

/contract-review --batch contracts/ --output reports/

Voice Narration

Any report can be narrated via ElevenLabs for accessibility or async review:

/health-check ... --voice --voice-id "rachel"

Troubleshooting

"Contextual AI rate limit exceeded"

The RAG analysis endpoint has a per-minute limit. Add --no-rag to fall back to base model analysis (lower accuracy):

/contract-review --file contract.pdf --no-rag

"Apify actor timeout"

SEC EDGAR and state database scrapes can time out on heavily loaded actors. Retry with --timeout 120:

/due-diligence ... --timeout 120

"Redis connection refused"

Check REDIS_URL in .env. For local development, run:

docker run -d -p 6379:6379 redis:alpine

"SAFE generation failed: invalid entity type"

SAFEs require a Delaware C-Corp. If the company is an LLC or S-Corp, the skill will halt and recommend conversion before fundraising.

"Civic PII scrub removed too much content"

Adjust the scrub sensitivity in skill/config.json under civic.sensitivity. Default is medium. Set to low for internal-only analysis where PII retention is acceptable.

Legal Sources

All templates and analysis are grounded against verified sources. See skill/data/sources.json for the complete list. Primary references:

Usage Guidance
Key things to check before installing or enabling this skill: 1) Manifest mismatch: SKILL.md lists several required environment variables (Friendli.ai/Contextual AI/Apify/Redis/Civic) but the published registry metadata claims none. Do not assume you can use the skill without providing keys — verify the manifest and ask the publisher to fix registry metadata. 2) Use least-privileged, dedicated credentials: provide scoped or test API keys (not org-wide or admin secrets). For Redis, use a separate namespace and rotate credentials. For Apify, be aware of rate limits and potential costs. 3) Verify PII handling: the skill claims to scrub PII via the Civic plugin before sending to inference — test and validate that scrubber, and avoid sending privileged or attorney-client materials through the system until you confirm scrubbing behavior. 4) Data retention & access: confirm how long Redis stores data (config.json references TTL), whether data is encrypted at rest/in transit, who can access it, and how to purge session data. 5) External scraping & legal/financial implications: Apify actors are used to query PACER, state filings, etc. Scraping PACER or other paid services may require credentials/fees and could be rate-limited or subject to terms of service — confirm legal/compliance aspects before automated scraping. 6) Provider endpoints and trust: the skill references third-party providers (friendli.ai, contextual.ai, apify). Verify these endpoints, their privacy policies, and that you trust them with extracted contract content or diligence data. 7) Legal disclaimers and licensing: the skill provides templates and claims grounding in YC/NVCA/Orrick templates — verify template provenance and license before using drafts in transactions; always have a licensed attorney review final documents. If you decide to proceed, start with a test account and dummy data, audit network calls and logs, and only escalate to production credentials after verifying the above items. If possible, ask the publisher to correct the registry metadata so automation and policy checks reflect the actual runtime requirements.
Capability Analysis
Type: OpenClaw Skill Name: founder-legal-copilot Version: 1.0.0 The 'founder-legal-copilot' skill is a comprehensive legal assistant designed to help startup founders with document generation and contract review. It utilizes RAG-grounded analysis via Contextual AI and live public data scraping through Apify (targeting SEC EDGAR and state corporate records), which aligns perfectly with its stated purpose. The skill incorporates security-positive features such as PII scrubbing via the Civic-nexus plugin and persistent session memory via Redis. No evidence of malicious intent, data exfiltration, or unauthorized command execution was found across the configuration, prompts, or templates.
Capability Assessment
Purpose & Capability
The skill claims to be a legal copilot that generates SAFEs, reviews contracts, performs health checks, and runs live due diligence. The SKILL.md and config.json request inference (Friendli.ai / Contextual AI), live scraping (Apify), PII scrubbing (Civic), and persistent memory (Redis) which are all coherent with the stated features. However, the registry metadata reported 'Required env vars: none' and 'Primary credential: none' while SKILL.md explicitly lists several required keys — this mismatch is an integrity concern (likely manifest omission).
Instruction Scope
The SKILL.md instructions stay within the stated legal-due-diligence/generator/reviewer scope: parse documents, scrub PII, perform RAG grounding, call Apify actors for public records, and store session/deal history in Redis. There are no instructions to read arbitrary local system files or to exfiltrate data to opaque endpoints. Notable behaviors: (1) Civic plugin is used to scrub PII before inference, and (2) Apify is used to scrape PACER/EDGAR/state corp records — both network actions that involve sending data off-host and may return sensitive findings. The skill will collect and persist deal-related data in Redis (expected for memory) — be mindful of what you allow it to store.
Install Mechanism
This is an instruction-only skill with no install spec or code files — lowest install risk. It does instruct installing OpenClaw plugins (redis-agent-memory, civic-nexus) and adding an Apify MCP server; those are standard platform plugin operations rather than arbitrary downloads or extracted archives.
Credentials
SKILL.md requires multiple credentials: FRIENDLIAI_API_KEY, CONTEXTUAL_AI_API_KEY, APIFY_API_TOKEN, REDIS_URL, CIVIC_CLIENT_ID, plus optional ELEVENLABS_API_KEY. Those keys map to the skill's features and are proportionate in purpose. The concern is twofold: (1) the published registry metadata lists no required env vars (a mismatch that could mislead users or automated policy checks), and (2) providing these credentials grants the skill live access to external inference, scraping, and persistent storage — sensitive privileges that should be scoped and audited (use least-privileged keys, rate/cost controls, and separate test accounts).
Persistence & Privilege
The skill does not request 'always: true' and is user-invocable (normal). It uses Redis for session/deal memory (config.json indicates TTL ~90 days and a namespace). Persistent storage of deal documents and diligence reports is expected for this use case, but you should confirm retention policy, access controls, and whether memory is encrypted. Autonomous invocation is allowed by default on the platform — combined with live API keys and persistent memory this increases blast radius if keys are leaked or the agent behaves unexpectedly; this is a caution rather than a definitive vulnerability.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install founder-legal-copilot
  3. After installation, invoke the skill by name or use /founder-legal-copilot
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of Founder Legal Copilot: a legal guidance tool for startup founders covering 27 deliverables across 5 startup phases, from incorporation to exit. - Features include SAFE note generation, contract risk review, legal health checks, and due diligence with live corporate data. - Supports RAG-grounded analysis using YC, NVCA, and Orrick legal templates. - Integrates with plugins for deal memory, PII scrubbing, and voice narration; provides multilingual output. - Includes troubleshooting for common setup and API issues.
Metadata
Slug founder-legal-copilot
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Founder Legal Copilot?

Legal copilot that guides founders from incorporation to exit with 27 legal deliverables across 5 startup phases. It is an AI Agent Skill for Claude Code / OpenClaw, with 122 downloads so far.

How do I install Founder Legal Copilot?

Run "/install founder-legal-copilot" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Founder Legal Copilot free?

Yes, Founder Legal Copilot is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Founder Legal Copilot support?

Founder Legal Copilot is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Founder Legal Copilot?

It is built and maintained by Danillo Costa (@danillo7); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463942 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259883 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200739 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191401 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190375 · by oswalpalash

💬 Comments