← 返回 Skills 市场
juanbastias

Principal Agent Audit

作者 JaBasNaR · GitHub ↗ · v0.1.2 · MIT-0
cross-platform ✓ 安全检测通过
68
总下载
0
收藏
0
当前安装
3
版本数
在 OpenClaw 中安装
/install principal-agent-audit
功能描述
Audit a principal AI agent or coordinator bot: review memory, learnings, recent errors, installed skills, operational risks, delegation posture, and propose...
使用说明 (SKILL.md)

Principal Agent Audit

Use this skill to review a main AI assistant, coordinator bot, or "chief" agent that has access to user context, tools, memory, and other agents.

Default frame: the reviewed agent is the trusted principal agent. Improvements should make it more reliable, private, auditable, useful, and safe as a coordinator.

Boundaries

  • Read local memory, daily notes, learnings, skill files, and relevant workspace context.
  • Do not use network access unless the user explicitly asks for external lookup.
  • Do not publish skills, install packages, alter schedulers, change authentication, or edit critical config unless explicitly requested.
  • Do not auto-modify personality, memory policy, routing policy, delegation rules, or coordination behavior. Propose changes first.
  • Prefer reversible edits and written rationale.
  • Treat private user data as sensitive. Summarize patterns; do not quote secrets or full private logs.

Review Inputs

Inspect only what is relevant:

  • Durable memory files: operating preferences, identity, durable user instructions.
  • Daily notes: recent raw events, decisions, and repeated themes.
  • Learning/error logs: recurring failures, corrections, known tool issues, missing capabilities.
  • Tool notes: local assumptions, integration gotchas, device or host specifics.
  • Installed skills: overlap, risk, permissions posture, maintenance state, and suitability for a principal agent.
  • Agent/team structure: whether delegation boundaries and handoff rules are clear.

Workflow

  1. Establish the review question: general health, a specific failure, a proposed skill, a new capability, or multi-agent coordination.
  2. Gather the smallest useful local context.
  3. Classify findings:
    • Reliability: repeated failures, brittle commands, missing validation.
    • Privacy/security: excess permissions, external calls, token exposure risk.
    • Coordination: unclear agent roles, missing delegation rules, handoff gaps.
    • Memory hygiene: stale, missing, duplicated, or over-specific memories.
    • Tooling: missing binaries, broken assumptions, unsafe defaults.
    • User fit: whether the agent's behavior matches the user's durable preferences.
  4. Decide whether action is needed:
    • No action: say so.
    • Documentation update: edit memory or local notes when the preference is durable.
    • Skill update: propose or make scoped edits if requested.
    • External action: ask first.
  5. Report as a short operator briefing: verdict, evidence, risk, recommendation, and next action.

Proactive Reliability Patterns

Use these patterns selectively. They are guardrails for a trusted principal agent, not permission to self-modify.

Write-Ahead Logging

Before responding, preserve details that would be expensive to lose:

  • User corrections.
  • Durable preferences or operating rules.
  • Decisions, names, IDs, URLs, dates, or published artifacts.
  • Trial windows, scheduled reports, or future obligations.

Prefer raw daily notes for event capture and curated long-term memory only for distilled rules.

Working Buffer And Recovery

When context is near compaction or a session resumes after truncation:

  • Record the current task, key decisions, file paths, IDs, and next action before continuing.
  • Recover from local memory and workspace artifacts before asking the user to restate context.
  • Summarize private context instead of copying full logs.

Verify Implementation, Not Intent

Before reporting completion:

  • Verify the mechanism, not just the wording.
  • For skill edits: read the updated SKILL.md, validate frontmatter, and confirm metadata still matches behavior.
  • For scheduler edits: inspect the actual job, trigger time, delivery target, and job ID.
  • For publication: inspect registry metadata after publishing when possible.

Autonomous Vs Prompted Scheduled Work

When evaluating scheduled work:

  • Use autonomous isolated jobs when the work must execute without main-session attention.
  • Use main-session prompts only when live context or user interaction is required.
  • Record expected output and how success will be verified.

Proactivity Gate

Recommend proactive action only when it is local, reversible, low risk, and likely useful. External actions, public actions, broad deletes, publishing, authentication changes, and behavior-policy changes require explicit user approval.

Skill Evaluation Rule

When evaluating a skill for the principal agent, ask:

  • Does it improve reliability, privacy, judgment, coordination, or recoverability?
  • Does it introduce broad shell access, network dependency, hidden state, self-modification, or unclear external effects?
  • Can it operate in read-only or proposal-first mode?
  • Is its output auditable and reversible?
  • Does it duplicate simpler existing memory, learning, or review workflows?

Classify the skill:

  • Use now: low risk, clear benefit, good fit for the principal agent.
  • Adapt locally: useful idea, but needs pruning, sandboxing, or stricter boundaries.
  • Avoid: risk exceeds benefit for a trusted coordinator.

Output Style

  • Be concise and direct.
  • Lead with the verdict.
  • Separate "use now", "adapt locally", and "avoid" when evaluating skills.
  • Prefer conservative changes that make coordination clearer and safer.
  • If changes were made, list exact files touched.

Decision Rule

A capability belongs in a principal agent only if it helps the agent become more reliable, private, auditable, and useful as a coordinator. Capabilities that add autonomy, network dependency, hidden state, broad shell access, or self-modification require exceptional justification and explicit approval.

安全使用建议
Install this only if you want a local audit helper that can inspect agent memory, notes, learnings, installed skills, and scheduled-work context. Because implicit invocation is enabled, use clear prompts when requesting audits and require explicit approval before any edits, scheduler changes, authentication changes, publishing, or network lookups.
能力评估
Purpose & Capability
The stated purpose is to audit a principal or coordinator agent for reliability, privacy, operational risk, skills, scheduled work, memory hygiene, and delegation posture; the artifact consistently stays within that review-and-recommendation purpose.
Instruction Scope
The skill asks to read local memory, daily notes, learnings, skill files, and relevant workspace context, which can be sensitive, but it also says to inspect only relevant inputs, gather the smallest useful context, summarize private data, avoid quoting secrets or full logs, and propose high-impact behavior changes first.
Install Mechanism
The package contains only SKILL.md and agents/openai.yaml, declares no required binaries, and has no executable scripts or dependency installation mechanism.
Credentials
The instructions explicitly avoid network access, publishing, package installs, scheduler changes, authentication changes, and critical config edits unless the user explicitly asks.
Persistence & Privilege
The skill discusses memory or note updates and scheduled-work review, but frames them as local, reversible, low-risk, rationale-backed, or user-requested; it does not install persistence, background workers, credential use, or autonomous self-modification.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install principal-agent-audit
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /principal-agent-audit 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.2
Remove unsupported frontmatter version key after Python-based skill validation; keep proactive guardrails from 0.1.1.
v0.1.1
Add conservative proactive guardrails: write-ahead logging, working buffer recovery, verification checks, and scheduled-work review.
v0.1.0
Initial principal-agent audit skill
元数据
Slug principal-agent-audit
版本 0.1.2
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 3
常见问题

Principal Agent Audit 是什么?

Audit a principal AI agent or coordinator bot: review memory, learnings, recent errors, installed skills, operational risks, delegation posture, and propose... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 68 次。

如何安装 Principal Agent Audit?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install principal-agent-audit」即可一键安装,无需额外配置。

Principal Agent Audit 是免费的吗?

是的,Principal Agent Audit 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Principal Agent Audit 支持哪些平台?

Principal Agent Audit 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Principal Agent Audit?

由 JaBasNaR(@juanbastias)开发并维护,当前版本 v0.1.2。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论