ClawHub

Agent Rule Pilot

v1.0.0

Say 'sync my agent configs' to write coding rules once and sync to Claude Code, Cursor, Copilot, Windsurf, and 4 more agents.

0· 22·0 current·0 all-time
bySingYee@singggggyee
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill's name and description promise syncing agent rules across multiple AI agent config files; the SKILL.md explicitly describes detecting existing configs, reading package manifests (package.json, Cargo.toml, etc.), generating RULES.md, and writing per-agent config files. All of those capabilities are directly relevant to the stated purpose.
Instruction Scope
Instructions require reading and writing multiple local config files and project manifests, and performing diffs and format validation. This is expected for a sync tool, but it does mean the agent will access many repository/dotfile paths and modify them. The SKILL.md states 'show diffs before writing' and 'ask user to resolve' conflicts, which mitigates risk as long as the agent actually prompts before changes. The SKILL.md does not instruct any network exfiltration or access to unrelated secrets.
Install Mechanism
There is no install spec and no code files—this is an instruction-only skill. That is the lowest-risk install posture and matches the content of the SKILL.md.
Credentials
The skill requests no environment variables, credentials, or installs. However, it will access a number of well-known config paths (agent dotfiles and project manifests). The registry metadata does not enumerate required config paths; users should be aware the skill will read and write those files in the workspace/home directories.
Persistence & Privilege
The skill is not marked always:true and does not request system-wide or other-skills' configuration changes. Autonomous invocation is allowed (normal default); this means the agent could run the sync flow on request or potentially autonomously, but that is expected for a tool that manipulates local files.
Assessment
This skill will read and write multiple local configuration files and project manifests (RULES.md, CLAUDE.md, .cursorrules, .github/copilot-instructions.md, .sourcegraph/cody.json, etc.). That behavior is coherent with its purpose, but before using it: (1) review the linked GitHub repo to verify the code/author if you plan to trust it; (2) keep backups or make a git commit before running the sync so you can revert unintended edits; (3) confirm the agent actually shows diffs and asks for confirmation before writing (the SKILL.md says it will); (4) prefer running it in a safe/test repository first; and (5) be mindful that, while it asks for no credentials or network access, the agent will still modify files on your system—only proceed if you trust the skill and monitor the first run.

Like a lobster shell, security has layers — review code before you run it.

latestvk97afy8yrg7sragvazq62nhy8h846tvn

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔄 Clawdis
OSmacOS · Linux

Comments