Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Boss
v0.1.0BMAD 全自动项目编排 Skill。从需求到部署的完整研发流水线,编排多个专业 Agent(PM、架构师、UI 设计师、Tech Lead、Scrum Master、开发者、QA、DevOps)自动完成完整研发周期。当用户说 'boss mode'、'/boss'、'全自动开发'、'从需求到部署'、'帮我做一个...
⭐ 1· 636·1 current·1 all-time
by青雲@echovic
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The Skill claims to orchestrate a multi‑role development pipeline and all included agent prompts, tools (Read/Write/Glob/Grep/Bash/Task/WebSearch/WebFetch/etc.) and artifact conventions (.boss/<feature>/) are coherent with that purpose. There are no unexpected cloud credentials, unrelated binaries, or config paths requested.
Instruction Scope
SKILL.md and the agent prompts consistently instruct the boss agent to: collect requirements, load agent prompt files, call sub‑agents via Task, read the repo, write artifacts to .boss/, run tests and (optionally) deploy locally. Those operations are within scope for an automated dev pipeline. Note: several agents explicitly include Bash and commands to execute tests/deploy — this means the skill will run shell commands against the workspace when invoked (expected for the described functionality).
Install Mechanism
This is an instruction‑only skill with no install spec. No downloads or archive extraction are performed by the skill itself, so installation risk is low.
Credentials
The skill declares no required environment variables, credentials, or config paths. The included agent prompts reference web search/fetch and local file operations which are proportionate to research and codebase exploration. There are no demands for unrelated secrets (AWS keys, tokens, etc.).
Persistence & Privilege
always:false and user-invocable:true. The skill does not request permanent/global presence or changes to other skills' configs. It may execute sub‑tasks autonomously when invoked (disable-model-invocation:false), which is the platform default and necessary for orchestration.
Assessment
This skill is coherent for orchestrating an automated development pipeline, but it will perform powerful actions in your environment: reading the repository, writing files under .boss/<feature>/, running shell commands (tests, build, docker/docker‑compose, dev servers), and performing web fetch/search. Before installing or running:
- Review the included init-project.sh and any other scripts to ensure they don't run unexpected commands.
- Avoid running in a privileged or production environment; use an isolated workspace or container when first trying the skill.
- Be cautious with the --quick flag (it skips confirmation prompts). Don't use --quick if you want to review generated changes.
- The skill does not request credentials, but DevOps steps may prompt you for deployment credentials (CI/CD, cloud providers) if you try to deploy — only provide secrets to trusted code and flows.
- If you need stricter controls, ensure the host platform restricts network or shell access for the skill or run it in a sandboxed environment.Like a lobster shell, security has layers — review code before you run it.
latestvk97ey69gy1kc7nvrxqdfhw4md181s7s2
License
MIT-0
Free to use, modify, and redistribute. No attribution required.