Entrepreneur PM Framework
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: entrepreneur-pm Version: 1.0.0 The entrepreneur-pm skill bundle is a structured management framework designed to coordinate AI agents for business tasks like Shopify management and market analysis. It includes detailed routing matrices, task templates, and explicit security 'Iron Rules' in references/agent-capabilities.md that forbid logging tokens or storing secrets in insecure locations. The bundle demonstrates clear benign intent by focusing on operational efficiency, task verification, and experience accumulation (e.g., in /workspace/memory/) without any signs of malicious execution or data exfiltration.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent using this skill could access a Shopify admin token and make privileged store changes if the token exists in the environment.
This tells agents where to find a local Shopify admin credential and which admin API to use. The provided requirements list no primary credential or env vars, so this high-impact account authority is under-declared and not tightly scoped.
GraphQL: `https://nsb9ct-sc.myshopify.com/admin/api/2024-01/graphql.json` ... Token: 在 `/home/minimax/.openclaw/secrets/.env` 的 SHOPIFY_ADMIN_TOKEN
Declare the Shopify credential requirement, use a least-privilege token, restrict allowed API actions, and require explicit user confirmation before any admin mutation.
Product pages or variants could be changed on the live store without the user reviewing the exact change first.
The example workflow encourages direct live Shopify mutation rather than a preview, diff, or approval gate. Product-page changes are business-impacting even when they are purpose-aligned.
通过 Shopify REST API PUT 更新 body_html ... 输出要求:- 直接更新 Shopify,不需要先生成文件
Default to dry-run or draft output, show a diff of intended changes, and ask for explicit approval before updating Shopify data.
Subagents may keep working for a long time or act with broad inherited permissions if a task package is too vague.
The skill intentionally orchestrates long-running and parallel subagents with inherited permissions. This fits the team-management purpose and includes a suggested parallelism limit, but users should monitor it.
`sessions_spawn subagent` | `继承主 Agent` ... `大任务` | `30分钟-2小时` | `sessions_spawn + 自动报告` ... `超大任务` | `>2小时` | `拆分 → 多个 subagent 并行`
Set clear task boundaries, timeouts, maximum parallelism, and required human approval for any high-impact action performed by spawned agents.
Private task details or incorrect conclusions could be reused in later tasks and influence future agent behavior.
The skill stores task learnings and may update future skill behavior. This is disclosed and purpose-aligned, but persistent memory can retain sensitive details or propagate bad lessons.
写入位置:`/workspace/memory/learnings-[YYYY-MM].md` ... `Skill 更新(rules/references 更新)` ... `下次自动调用正确方法`
Review learning files regularly, avoid storing secrets or customer data, and require user approval before editing installed skill instructions.