← Back to Skills Marketplace
athola

Nm Gauntlet Graph Search

by athola · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
70
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install nm-gauntlet-graph-search
Description
Search the code knowledge graph by function, class, or type name using FTS5 full-text search with query-aware kind boosting
Usage Guidance
This skill appears to do what it says (search a local .gauntlet/graph.db) but the SKILL.md expects CLAUDE_PLUGIN_ROOT and calls python3 even though the registry lists no required env or binaries. Before installing or running it: 1) verify that CLAUDE_PLUGIN_ROOT will be set to a trusted plugin checkout; 2) inspect the file scripts/graph_query.py in that repository to confirm it only reads the graph and source files you expect; 3) ensure python3 is available in a controlled/sandboxed environment; 4) only run this if you trust the plugin source or after reviewing the script — otherwise run the search in a sandbox or request the skill author to declare required env vars and binaries explicitly.
Capability Analysis
Type: OpenClaw Skill Name: nm-gauntlet-graph-search Version: 1.0.0 The skill defines a workflow in SKILL.md that executes a local Python script (graph_query.py) using a shell command with user-provided input in the --query parameter. This pattern introduces a potential shell injection vulnerability if the agent does not sanitize the input. While the functionality is aligned with its stated purpose of searching a local SQLite database (.gauntlet/graph.db), the lack of explicit input handling makes it high-risk.
Capability Assessment
Purpose & Capability
The skill's stated purpose (FTS5 search of a code knowledge graph) is consistent with the instructions to run a graph_query.py script against .gauntlet/graph.db. However, the SKILL.md expects a runtime environment (CLAUDE_PLUGIN_ROOT, python3) that the registry metadata does not declare — a minor incoherence.
Instruction Scope
Instructions are narrowly scoped to running the plugin's graph_query.py against .gauntlet/graph.db and optionally reading the matched source file. The instructions do not ask the agent to exfiltrate results to external endpoints or to read unrelated system-wide files.
Install Mechanism
There is no install spec (instruction-only), so nothing will be downloaded or written by the registry itself. Risk comes from running a local script (plugin's scripts/graph_query.py) at runtime, which is expected for this kind of plugin.
Credentials
SKILL.md uses the CLAUDE_PLUGIN_ROOT environment variable and invokes 'python3', but the registry lists no required env vars or binaries. This mismatch is concerning because the skill depends on an undeclared environment and an executable that may or may not be present — and the script executed could read arbitrary files under the plugin root.
Persistence & Privilege
The skill does not request persistent/always-on presence and does not modify other skills or global agent configuration according to the metadata.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install nm-gauntlet-graph-search
  3. After installation, invoke the skill by name or use /nm-gauntlet-graph-search
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of the graph-search skill. - Search code knowledge graph by function, class, or type name using FTS5 full-text search. - Includes query-aware kind boosting for smarter search results based on the search term’s pattern. - Displays qualified name, file path, line numbers, and relevance score in results. - Offers to read the top result’s source file. - Requires a pre-built `.gauntlet/graph.db`; suggests running graph-build if missing.
Metadata
Slug nm-gauntlet-graph-search
Version 1.0.0
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 1
Frequently Asked Questions

What is Nm Gauntlet Graph Search?

Search the code knowledge graph by function, class, or type name using FTS5 full-text search with query-aware kind boosting. It is an AI Agent Skill for Claude Code / OpenClaw, with 70 downloads so far.

How do I install Nm Gauntlet Graph Search?

Run "/install nm-gauntlet-graph-search" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Nm Gauntlet Graph Search free?

Yes, Nm Gauntlet Graph Search is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Nm Gauntlet Graph Search support?

Nm Gauntlet Graph Search is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Nm Gauntlet Graph Search?

It is built and maintained by athola (@athola); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments