Architecture Fitness Function Designer
v1.0.0Design automated governance mechanisms (fitness functions) that objectively measure and enforce architecture characteristics over time. Use this skill whenev...
⭐ 0· 57·0 current·0 all-time
byHung Quoc To@quochungto
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Benign
high confidencePurpose & Capability
Name/description ask for automated architecture governance; the skill requires reading a codebase, detecting build/CI files, and producing tests or CI gates—these capabilities match the stated purpose and declared tools (Read/Write, optional Grep/Glob/Bash). No unrelated binaries or credentials are requested.
Instruction Scope
The SKILL.md instructs the agent to scan repository files (pom.xml, package.json, ADRs, CI files), infer characteristics, and produce or modify tests and CI integration. This is within scope, but it also includes guidance around operational/chaos tests and CI gating which can be destructive or disruptive if executed in production. The skill does not itself include steps to exfiltrate secrets, but it will need access to repository and pipeline artifacts to be effective.
Install Mechanism
Instruction-only skill with no install spec and no code files; nothing is written to disk by an installer. Low install risk.
Credentials
The skill declares no required environment variables or credentials. It notes that best results come from being run inside a codebase with CI/CD access—this is reasonable for the purpose. Be aware that actually integrating tests into pipelines will require CI credentials or repo commit access in practice, but the skill does not request or require them up front.
Persistence & Privilege
always:false and normal autonomous invocation settings. The skill requests Read and Write tools (expected for producing test artifacts). That capability is consistent with designing and optionally adding fitness functions; users should control whether the agent is allowed to perform writes or commits.
Assessment
This skill is coherent and appears to do what it claims: it will read your repository and CI configuration and propose or produce architecture tests and CI gates. Before installing or running it with Write/CI access: (1) restrict the agent's permissions — prefer read-only first and review proposed changes before allowing commits; (2) do not run any recommended chaos/production fault injections without human review and staging validation; (3) expect that integrating tests into CI will require providing pipeline credentials or a developer to apply changes manually; (4) review any automated commits or CI edits the skill proposes to ensure they match your policies. If you want the agent to be fully autonomous with write/CI access, limit that to trusted repositories and consider keeping it disabled for production environments.Like a lobster shell, security has layers — review code before you run it.
ArchUnitvk974v6my58y7fnz8g146bh7gqs84pgs8CI-CDvk974v6my58y7fnz8g146bh7gqs84pgs8architecture-erosionvk974v6my58y7fnz8g146bh7gqs84pgs8bookforgevk974v6my58y7fnz8g146bh7gqs84pgs8chaos-engineeringvk974v6my58y7fnz8g146bh7gqs84pgs8cyclomatic-complexityvk974v6my58y7fnz8g146bh7gqs84pgs8fitness-functionsvk974v6my58y7fnz8g146bh7gqs84pgs8governancevk974v6my58y7fnz8g146bh7gqs84pgs8latestvk974v6my58y7fnz8g146bh7gqs84pgs8metricsvk974v6my58y7fnz8g146bh7gqs84pgs8software-architecturevk974v6my58y7fnz8g146bh7gqs84pgs8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📚 Clawdis