← Back to Skills Marketplace
MYR
by
JordanGreenhall
· GitHub ↗
· v1.3.0
· MIT-0
501
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install myr
Description
Capture, verify, search, export, import, and synthesize Methodological Yield Reports to compound OODA cycle learnings across Starfighter/Pistis intelligence...
Usage Guidance
This skill appears to do what it says, but it carries real operational risk. Before installing: (1) do NOT run the one-line curl | bash without review—download the install script and inspect it first; (2) prefer cloning the repository and auditing the code (especially install.sh and server/index.js) before npm install; (3) run initial tests in an isolated VM or container, not on a production host; (4) avoid exposing the node_url to the public internet—use Tailscale/VPN and firewall rules, and restrict inbound ports; (5) review how keys and config.json are stored and back up secrets securely; (6) require authenticated peer pairing where possible and be cautious about accepting peer announces—unauthenticated discovery can leak metadata; (7) request signed releases or checksums from the author if you need to deploy widely. If you cannot review the code or run it in isolation, consider treating this as untrusted software.
Capability Analysis
Type: OpenClaw Skill
Name: myr
Version: 1.3.0
The skill bundle instructs the agent to perform high-risk operations, including a 'curl | bash' installation from a remote GitHub repository and the setup of a persistent background service on macOS using launchd (com.myr.server.plist). While these actions support the stated goal of a peer-to-peer intelligence system, the combination of remote script execution, automated network synchronization, and an 'auto-approve' trust mechanism for remote peers creates a significant attack surface for data exfiltration or unauthorized access. These instructions are primarily contained within SKILL.md.
Capability Assessment
Purpose & Capability
The name/description (capture, verify, search, export/import, synthesize MYRs) matches the SKILL.md. All runtime instructions (key generation, signing, export/import, search, verification, server for peer sync) are consistent with an intelligence-compounding P2P node.
Instruction Scope
The SKILL.md instructs the agent/operator to run networked services, generate persistent keys/config, run multiple node scripts, and open services for peer sync. It recommends setting MYR_HOME, running npm scripts, starting an HTTP server, and creating a launchd plist for persistence. The server exposes discovery and announce endpoints with no auth and supports automatic peer sync—this broad network behavior increases risk of data leakage or unwanted connectivity. The instructions do not ask for unrelated system files or external credentials, but they do direct persistent, network-exposing actions that go beyond a purely local helper.
Install Mechanism
The recommended 'one-step' install uses piping a raw GitHub-hosted install.sh to bash (curl -fsSL https://raw.githubusercontent.com/... | bash), which executes remote code without local review. The manual install path uses git clone + npm install (which will pull third-party npm packages). No checksums, signatures, or pinned release artifacts are provided. These practices elevate risk compared to a reviewed package or signed release.
Credentials
The skill does not request external environment variables or credentials in metadata. It does instruct creation of local keys and writing node_uuid/node_id to config.json and recommends setting MYR_HOME. Those local artifacts are proportional to a P2P node, but storing keys/config on disk and advertising node_url publicly are sensitive and should be handled carefully.
Persistence & Privilege
The documentation explicitly instructs creating a persistent service (macOS launchd example) and running a long-lived HTTP server that peers can reach. While the skill is not force-installed (always:false), installing it as described creates persistent network-facing behavior which increases attack surface and exposure if the software or its dependencies are compromised.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install myr - After installation, invoke the skill by name or use
/myr - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.3.0
One-step install.sh; Hermes/Python integration example; README updates
v1.1.0
Add HTTP server for live peer sync, launchd persistent service setup, peer management CLI (add-peer, approve-peer, fingerprint exchange), Tailscale networking guide, shareable report marking
v1.0.0
Initial publish: MYR skill for Starfighter/Pistis intelligence compounding
Metadata
Frequently Asked Questions
What is MYR?
Capture, verify, search, export, import, and synthesize Methodological Yield Reports to compound OODA cycle learnings across Starfighter/Pistis intelligence... It is an AI Agent Skill for Claude Code / OpenClaw, with 501 downloads so far.
How do I install MYR?
Run "/install myr" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is MYR free?
Yes, MYR is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does MYR support?
MYR is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created MYR?
It is built and maintained by JordanGreenhall (@jordangreenhall); the current version is v1.3.0.
More Skills