Fund Operation Workflow
v2.0.0[何时使用]当用户需要构建基金运营工作流时;当用户说"基金互金电商业务搭建"时;当需要按 MBTI 特质分配工作流节点任务时;当检测到"收集/归档/策略/实施/测试/监控"等工作流关键词时;当需要使用 STAR+ 合规前置框架设计提示词时
⭐ 0· 79·1 current·1 all-time
by@lj22503
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The name/description (fund operation workflow, MBTI matching, STAR+ compliance) aligns with the provided SKILL.md, prompts, references and examples. The files contain templates, SOPs, compliance checklists and concrete node-level prompts that match the declared functionality.
Instruction Scope
Runtime instructions are prompt templates and process guidance; they do not instruct the agent to read local secrets, secret env vars, or execute arbitrary code. However the repository includes marketing/operational docs (WECHAT funnel, USAGE_TRACKING) that describe collecting user contact info and external links/QRs. Those parts extend scope into user outreach/data-collection (not intrinsic to core workflow generation) and should be reviewed for privacy compliance before use.
Install Mechanism
The skill is instruction-only and has no install spec. Documentation (README/QUICKSTART/WECHAT_FUNNEL) recommends using ClawHub/OpenClaw and shows a curl | bash install example for OpenClaw. While not part of the skill bundle, running remote install scripts (curl | bash) is a user action with risk—treat as external to the skill but exercise standard caution.
Credentials
The skill declares no required environment variables, credentials, or config paths. Some ancillary docs request collecting user contact details (WeChat, Feishu forms) for usage tracking and marketing; collecting that PII is not required for the skill's runtime prompts and should be handled according to privacy and legal requirements.
Persistence & Privilege
Skill flags show default privileges (always:false, agent invocation allowed). There is no code that requests permanent system presence or modifies other skills. As an instruction-only skill it does not persist binaries or run background services.
Assessment
This skill appears to be what it claims: a library of prompts, SOPs and compliance checklists for building fund-operation workflows. Before you install/use it: (1) do not blindly run remote install commands (e.g., curl | bash) without auditing the target script; (2) the marketing/usage-tracking docs ask users to provide WeChat/Feishu contact data and to download resources from external links—treat these as optional and review privacy/consent practices before sharing PII; (3) if you will use the templates in a regulated environment, have a licensed compliance officer review outputs and the data-collection practices; (4) no credentials/env-vars are required by the skill itself, but if you integrate its prompts with live systems or APIs, follow least-privilege and secure-credential practices.Like a lobster shell, security has layers — review code before you run it.
latestvk972c09p2rs0wv61bp5h0kc1xx83m1xq
License
MIT-0
Free to use, modify, and redistribute. No attribution required.