ClawHub

Architecture Tradeoff Analyzer

v1.0.0

Systematically analyze trade-offs across quality attribute dimensions for architecture decisions. Use this skill whenever the user is comparing architecture...

0· 51·0 current·0 all-time
byHung Quoc To@quochungto
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoCan make purchases
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description match what the SKILL.md instructs: analyze architecture trade-offs. It declares Read/Write tools and suggests scanning repo artifacts and docs (README, adr, docker-compose, k8s manifests) which are reasonable for this purpose. No unrelated binaries, env vars, or external services are required.
Instruction Scope
Runtime instructions stay on-task: frame the decision, pick top quality attributes, list pros/cons, and — if a codebase exists — scan architecture-related files. There are no instructions to read unrelated system files, exfiltrate secrets, call unknown endpoints, or otherwise collect data beyond project and decision context.
Install Mechanism
No install spec and no code files (instruction-only). This minimizes surface area: nothing is downloaded, extracted, or written to disk by an installer.
Credentials
The skill requires no environment variables, credentials, or config paths. Its suggested file reads (docs, manifests, repo structure) align with its function and are proportionate. It does not request secrets or broad system access.
Persistence & Privilege
always:false and it does not request persistent presence or elevated privileges. It is user-invocable and can be called autonomously by the agent (platform default), which is appropriate for a helper skill.
Assessment
This skill appears coherent and low-risk: it only contains instructions and references for doing trade-off analysis and may read repository files and architecture docs for context. Before installing or running it, confirm you trust the skill source (homepage points to a GitHub repo) and avoid running it on repositories that contain sensitive credentials or secrets. Note the skill is marked 'draft' in SKILL.md — review its wording to ensure it matches your intended usage. If you want tighter control, run it on a copy of the codebase or restrict the agent's file-read permissions.

Like a lobster shell, security has layers — review code before you run it.

architecturevk973jr4nyd45qjqxens4npww1584qfr0bookforgevk973jr4nyd45qjqxens4npww1584qfr0decision-makingvk973jr4nyd45qjqxens4npww1584qfr0latestvk973jr4nyd45qjqxens4npww1584qfr0quality-attributesvk973jr4nyd45qjqxens4npww1584qfr0software-architecturevk973jr4nyd45qjqxens4npww1584qfr0trade-offsvk973jr4nyd45qjqxens4npww1584qfr0

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📚 Clawdis

Comments