ClawHub
Back to skill
v1.0.0

it-ops-orchestrator

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 2:51 PM.

Analysis

This instruction-only IT orchestration skill appears coherent and benign, but users should review any generated IT automation and be aware that task context may be routed to specialist agents.

GuidanceThis skill is reasonable to install if you want an IT-ops routing assistant. Treat its outputs as plans or recommendations: review any scripts before running them, confirm administrative approvals, and avoid sharing secrets or sensitive production details unless truly needed.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
Prefer **PowerShell-first** when... The task involves automation... Example 1 – “Audit stale AD users and disable them”

The skill may produce or route advice for IT automation that can affect accounts or infrastructure. This is aligned with its stated IT-ops purpose and is paired with safety guidance, but the operational impact is worth noticing.

User impactIf a user applies generated scripts or plans without review, they could change infrastructure, cloud resources, or account state.
RecommendationReview generated automation carefully, confirm scope and approvals, test in a safe environment, and ensure rollback plans before running changes.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
SKILL.md
Assign each sub-problem to the correct agent... Manage context between agents to avoid contradicting guidance

The skill explicitly coordinates work and context across other agents. This is central to its orchestrator purpose, but the artifacts do not define detailed data-boundary rules for what context should or should not be shared.

User impactInformation included in an IT request could be passed into specialist agents during routing.
RecommendationAvoid including unnecessary secrets or sensitive production details, and use only trusted specialist agents for routed tasks.