Agent Builder
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If a user chooses a high-autonomy generated agent, that future agent may take more initiative with available tools or channels.
The skill explicitly helps users choose an autonomy model for a future agent, including a broad-autonomy option. This is disclosed and paired with guardrail generation, but users should review it carefully.
Autonomy level: ... Operator (non-destructive ok; ask before destructive/external) ... Autopilot (broad autonomy; higher risk)
Start with Advisor or Operator mode unless broad autonomy is truly needed, and keep explicit approval rules for destructive actions and outbound messages.
Future agents may use saved notes to influence later responses, and sensitive information could persist if the user stores it there.
The generated agent templates can persist and reread user preferences, decisions, and session notes. The template limits MEMORY.md to private sessions, but persistent memory still deserves user review.
In private main sessions only: read `MEMORY.md` if present. ... Daily log: `memory/YYYY-MM-DD.md` ... Long-term: `MEMORY.md` (decisions, preferences, durable facts)
Keep memory entries minimal, avoid secrets, and periodically review or prune MEMORY.md and daily logs.
If heartbeats are enabled, a generated agent may perform periodic checks according to HEARTBEAT.md.
The workspace reference supports heartbeat-based periodic behavior. It is disclosed, optional, and cautioned, but it can make a generated agent act outside a direct chat turn.
Default heartbeat prompt: `Read HEARTBEAT.md if it exists ... Follow it strictly.` ... `Heartbeats burn tokens; enable only once you trust the agent.`
Leave HEARTBEAT.md empty by default and only add small, explicit checklist items after reviewing the generated agent's behavior.