← 返回 Skills 市场
Tidal Lock
作者
John DeVere Cooley
· GitHub ↗
· v1.0.0
270
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install tidal-lock
功能描述
Detects unhealthy coupling between components — when two modules, services, or layers have become gravitationally locked, unable to change independently. Lik...
安全使用建议
This skill conceptually fits architecture analysis, but before installing: 1) Ask the author (or review the full SKILL.md) to list exact runtime actions and the minimal required access (e.g., read-only git, path to repo, whether it will call monitoring APIs) and to declare any required binaries. 2) Never grant broad cloud or production monitoring credentials; provide scoped, read-only tokens (or a copy of the repository) for an initial run. 3) Consider running the skill on a sanitized/replicated repository or non-production environment first. 4) Require the skill to declare any external endpoints it will contact and to limit reading of environment variables to those explicitly needed. 5) If you need stronger assurance, request the author publish the analysis scripts (so you can inspect the exact commands) rather than using an instruction-only skill that may exercise broad filesystem and network access.
功能分析
Type: OpenClaw Skill
Name: tidal-lock
Version: 1.0.0
The provided skill bundle consists solely of metadata (_meta.json) and a detailed conceptual description (SKILL.md). There is no executable code (e.g., Python, shell scripts) or explicit instructions for the AI agent to perform any actions. The SKILL.md file describes a theoretical analysis methodology for code coupling but does not contain any commands, API calls, or prompt injection attempts that would instruct the agent to execute code, access sensitive data, or perform network operations. It explicitly states 'Zero external dependencies. Zero API calls. Pure structural and historical analysis.', which further indicates a benign intent for the described functionality.
能力评估
Purpose & Capability
The name and description align with the content: the skill is an architecture/coupling analysis that needs to map imports, co-changes, shared state, deploy ordering and failure correlations. That capability reasonably explains many of the analysis steps described. However, the skill declares no required binaries, environment variables, or install steps even though the methodology implies the need for git access, code parsing tools, and access to deployment/monitoring systems.
Instruction Scope
The SKILL.md instructs the agent to 'map explicit dependencies (imports, API calls, DB access)', 'map implicit dependencies (shared configs, env vars, timing)', 'git co-change analysis', and 'map failure correlation'. Those steps can require reading repository files, git history, configuration files, environment variables, CI/CD/deployment metadata, and monitoring/logs. The instructions are high-level and do not constrain what the agent may read or query, which gives the agent broad discretion to access many codebase artifacts and possibly sensitive runtime/configuration data.
Install Mechanism
This is an instruction-only skill with no install spec and no code files, so nothing is written to disk during install. That reduces supply-chain risk. However, because there is no bundled tooling, the agent will rely on the runtime environment's tools (git, shell, language parsers), which are not declared.
Credentials
requires.env and primary credential are empty, yet the methodology explicitly references env vars, DB access, deployment dependencies, and failure correlation (which often require monitoring/observability credentials or cloud credentials). The skill does not justify or request the minimal, scoped credentials (for example: read-only git access, readonly monitoring API keys). This omission makes it unclear what secrets or external services the agent will try to access to perform the analysis.
Persistence & Privilege
always is false and the skill does not request persistent installation or modification of other skills. Model invocation is enabled (the platform default) which is expected for a runtime analysis skill; this by itself is not an elevated privilege. No other persistent privileges are requested.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install tidal-lock - 安装完成后,直接呼叫该 Skill 的名称或使用
/tidal-lock触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release — Coupling health analyzer mapping gravitational bonds between components
元数据
常见问题
Tidal Lock 是什么?
Detects unhealthy coupling between components — when two modules, services, or layers have become gravitationally locked, unable to change independently. Lik... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 270 次。
如何安装 Tidal Lock?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install tidal-lock」即可一键安装,无需额外配置。
Tidal Lock 是免费的吗?
是的,Tidal Lock 完全免费(开源免费),可自由下载、安装和使用。
Tidal Lock 支持哪些平台?
Tidal Lock 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin, linux, win32)。
谁开发了 Tidal Lock?
由 John DeVere Cooley(@jcools1977)开发并维护,当前版本 v1.0.0。
推荐 Skills