Agile Observer
PassAudited by ClawScan on May 1, 2026.
Overview
Agile Observer is a coherent Trello/Jira reporting skill, with noteworthy but purpose-aligned use of account API credentials and optional scheduled reporting.
This appears reasonable for Trello/Jira agile reporting. Before installing or using it, make sure any API tokens are scoped appropriately, choose the exact board or project to analyze, avoid sharing reports to overly broad channels, and only enable the cron schedule if you intentionally want ongoing automated reports.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may be able to list and read boards, projects, cards, issues, labels, assignees, and transition history that the provided token can access.
The skill uses Trello/Jira API credentials from workspace secrets to access board or project data. This is expected for the stated purpose, but it grants the agent delegated access under the user's account.
Ask for Trello or Jira. Look for credential files in workspace secrets (`trello-credentials.json` or `jira-credentials.json`).
Use least-privileged Trello/Jira tokens where possible, store them only in workspace secrets, and confirm the intended board or project before running reports.
If enabled, the skill could keep generating and delivering board-health summaries on a schedule, potentially sharing work item names or blocker details with the configured channel.
A cron job is persistent automation that can continue running after initial setup. The behavior is disclosed and tied to recurring reports, but users should explicitly opt into it and know how to disable it.
For automated recurring reports, create a cron job: - Schedule: weekly Monday 9:00 AM - Task: Run agile-observer for board [X], deliver report to primary channel
Only enable recurring reports when needed, specify the exact board and recipient channel, review the report content, and document how to remove or disable the cron job.