← 返回 Skills 市场

Incident Postmortem Framework

Name: Incident Postmortem Framework
Author: 1kalin

作者 1kalin · GitHub ↗ · v1.0.0

cross-platform ✓ 安全检测通过

490

总下载

当前安装

版本数

在 OpenClaw 中安装

/install afrexai-postmortem

功能描述

Generates structured blameless incident postmortems from raw notes, producing summaries, timelines, root cause analyses, impacts, action items, and preventio...

使用说明 (SKILL.md)

Incident Postmortem Generator

Generate blameless incident postmortems from raw notes, Slack threads, or bullet points.

What It Does

Takes messy incident details and produces a structured postmortem document following Google/Atlassian SRE best practices.

Usage

Provide incident details in any format — timeline bullets, Slack copy-paste, verbal notes — and the agent will produce:

Executive Summary — What happened, impact, duration, severity
Timeline — Minute-by-minute from detection to resolution
Root Cause Analysis — 5 Whys format, no finger-pointing
Impact Assessment — Users affected, revenue impact, SLA breach
Action Items — Prioritized fixes with owners and deadlines
Lessons Learned — What worked, what didn't, what was lucky
Prevention Measures — Systemic changes to prevent recurrence

Instructions

When the user provides incident details:

Ask clarifying questions ONLY if critical info is missing (severity, duration, or resolution are the minimum)
Generate the full postmortem in markdown
Flag any gaps the team should fill in before publishing
Suggest 3-5 specific, actionable prevention measures ranked by effort/impact

Formatting Rules

Use ISO timestamps in timeline
Bold severity level (SEV1-SEV4)
Action items must have: description, owner placeholder, deadline placeholder, priority (P0-P3)
Keep language blameless — "the deploy process" not "Bob deployed"

Severity Guide

SEV1: Revenue-impacting, all users affected, >1hr
SEV2: Major feature down, >30% users, >30min
SEV3: Degraded performance, \x3C30% users
SEV4: Minor issue, workaround available

Example Input

prod went down at 2pm, bad deploy, rolled back at 2:45, ~500 users couldn't checkout, lost maybe $12k revenue

Example Output Structure

# Incident Postmortem: Checkout Service Outage
**Date:** 2026-02-22 | **Severity:** SEV1 | **Duration:** 45 minutes
**Author:** [Team Lead] | **Status:** Draft

## Executive Summary
...

Pro Tip

Run this after every incident, even small ones. The pattern recognition across postmortems is where the real value lives. Teams that write postmortems for SEV3+ incidents catch systemic issues 3x faster.

Need help building incident response processes from scratch? Check out the AfrexAI Context Packs — pre-built operational frameworks for SaaS, healthcare, legal, and 7 more industries. Starting at $47.

安全使用建议

This skill appears coherent and only provides instructions for formatting incident postmortems. Before using it, avoid pasting sensitive data (secrets, full logs with tokens, or personal data) into the prompt because anything you provide will be used to generate the document. Verify severity/duration fields and any numeric estimates (revenue impact, affected users) — the model may hallucinate or round figures. Review action-item owners and deadlines before publishing, and be aware the README contains a commercial link (AfrexAI context packs) but the skill does not itself contact that site. If you need the agent to access external systems (PagerDuty, Slack, ticketing), prefer explicit integrations that require scoped credentials rather than pasting exported data into the prompt.

功能分析

Type: OpenClaw Skill Name: afrexai-postmortem Version: 1.0.0 The skill bundle is benign. All files (SKILL.md, README.md, _meta.json) align with the stated purpose of generating incident postmortems. The instructions in SKILL.md for the AI agent are clear, task-specific, and do not contain any prompt injection attempts, instructions for unauthorized actions, or commands for data exfiltration or system access. The external links in both markdown files are marketing-related and do not pose a security risk.

能力评估

✓ Purpose & Capability

Name, description, and runtime instructions align: the skill transforms incident notes into structured postmortems and does not request unrelated binaries, credentials, or config paths.

✓ Instruction Scope

SKILL.md contains only stepwise guidance for producing postmortems (ask clarifying questions, generate markdown, flag gaps, suggest prevention measures). It does not instruct reading system files, environment variables, or sending data to external endpoints beyond an informational link.

✓ Install Mechanism

No install spec and no code files — instruction-only skill. This is the lowest-risk install profile (nothing is written to disk by the skill itself).

✓ Credentials

The skill declares no required environment variables, credentials, or config paths. Nothing requested is disproportionate to creating written postmortems.

✓ Persistence & Privilege

always is false and the skill does not request permanent presence or elevated system privileges. Autonomous invocation is allowed by default for skills on the platform, but this skill doesn't combine that with any high-risk access.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install afrexai-postmortem
安装完成后，直接呼叫该 Skill 的名称或使用 /afrexai-postmortem 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release: Generate structured, blameless incident postmortems from raw notes. - Accepts unstructured incident details and outputs Google/Atlassian-style postmortems in markdown. - Covers executive summary, detailed timeline, root cause (5 Whys), impact, action items, lessons learned, and prevention measures. - Automatically asks for only critical missing info (severity, duration, or resolution). - Follows strict formatting: ISO timestamps, bolded severity, actionable/assigned/priority-tagged action items. - Blameless language enforced; highlights any info gaps for the team to fill before publishing. - Ranks prevention measures by effort/impact.

元数据

Slug afrexai-postmortem

版本 1.0.0

许可证 —

累计安装 1

当前安装数 1

历史版本数 1

常见问题