Prompt Refiner
v1.0.1Transforms casual or voice-transcribed user requests into precise, AI-optimized prompts. Handles mixed languages, vague input, and ambiguity. Reduces task ex...
⭐ 1· 94·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (prompt refinement for messy/multi-language input) matches SKILL.md, examples, and the included CLI script (scripts/refine.js) which performs language/intent detection and builds structured prompts. No unrelated binaries, env vars, or external services are required.
Instruction Scope
SKILL.md confines the skill to analysis, clarification, persona assignment, and constructing structured prompts. However it also includes guidance to 'Confirm & Execute' and examples that embed system-specific context (email accounts, file paths, launchd services, health checks). The skill itself does not include code to perform those destructive actions, but the instructions could encourage an agent to ask for or accept sensitive operational details and then trigger execution via other capabilities. Recommend ensuring the agent does not automatically execute system-level actions without explicit user confirmation.
Install Mechanism
No install spec; this is instruction-first with a small local CLI JS file. There are no downloads, remote installers, or extracted archives in the skill package. package.json and scripts/refine.js are local and self-contained.
Credentials
The skill declares no required env vars, credentials, or config paths. Still, SKILL.md and examples explicitly encourage including account identifiers, system paths, and service names in the constructed prompts — which may lead users or agents to provide sensitive information (email accounts, local file paths, service names). This is proportionate to prompt-refinement functionality but users should avoid supplying secrets (passwords, tokens) and be cautious about automatic execution of actions that use that context.
Persistence & Privilege
Skill does not request persistent presence (always:false). It does not modify other skills or system settings. Autonomous invocation is allowed (platform default) but not combined with other privilege escalation indicators in this package.
Assessment
This skill appears to do what it says and contains only a small local CLI script. Before you install or use it: (1) do not paste secrets (passwords, API keys, tokens) into prompts; (2) be cautious when the skill asks for account names, file paths, or service names—only provide the minimum context needed; (3) require explicit confirmation before allowing the agent to execute any destructive or system-level actions referenced in a refined prompt; (4) if you plan to run the included CLI, review scripts/refine.js locally (it contains no network calls) and run it in a controlled environment; (5) if you want to avoid accidental execution, consider disabling autonomous invocation or instruct the agent to never execute commands automatically. If the skill were to add network calls, remote installs, or required credentials later, reassess (that would raise the risk).Like a lobster shell, security has layers — review code before you run it.
latestvk975htvevkkqq68efcwhevhnr583werr
License
MIT-0
Free to use, modify, and redistribute. No attribution required.