devopsellence
ReviewAudited by ClawScan on May 10, 2026.
Overview
This is a coherent deployment helper, but it should only be used if you trust devopsellence's remote installer and are ready for it to change deployments, nodes, and secrets.
Before installing, make sure you trust devopsellence's installer and understand which app, workspace, environment, and nodes the agent will operate on. Treat deploy, node assignment, and secret changes as production-impacting actions and approve them deliberately.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Running this command could install or update local software and execute whatever code the remote installer serves.
The skill tells the agent to download and execute the latest provider-hosted installer script when the CLI is missing. This is disclosed and central to the skill, but it is unpinned and not verifiable from the provided artifacts.
curl -fsSL https://www.devopsellence.com/lfg.sh | bash
Only run the installer if you trust devopsellence and the URL. Prefer a pinned or package-manager install if available, and review the installer before execution for sensitive environments.
The agent may change project deployment state or node assignments if the user invokes this skill for those tasks.
The documented CLI flow can initialize project configuration, deploy an app, bootstrap nodes, and assign nodes. These actions are expected for the skill but can materially change deployments or infrastructure.
devopsellence init ... devopsellence deploy ... devopsellence node bootstrap ... devopsellence node assign <id>
Confirm the target app directory, organization, project, environment, and node ID before allowing deploy or node-management commands.
Incorrect use could expose, overwrite, or delete application secrets in the target devopsellence workspace.
The skill includes commands to set, list, and delete deployment secrets. This is purpose-aligned and includes safer stdin guidance, but it requires privileged access to sensitive workspace data.
printf '%s' "$VALUE" | devopsellence secret set --service web --name NAME --stdin devopsellence secret list devopsellence secret delete --service web --name NAME
Provide secrets only when needed, verify service/name/environment before changes, and avoid putting secret values in chat or shell history.