ClawHub

DriftaBot

v1.0.0

Query the DriftaBot Registry for API spec drifts, breaking changes, and provider information. Use when the user asks about API changes, breaking changes, pro...

0· 131·0 current·0 all-time
byPascoal Gomes@pgomes13

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for pgomes13/driftabot.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "DriftaBot" (pgomes13/driftabot) from ClawHub.
Skill page: https://clawhub.ai/pgomes13/driftabot
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install driftabot

ClawHub CLI

Package manager switcher

npx clawhub@latest install driftabot
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description say the skill queries a public DriftaBot registry for API drifts; the SKILL.md only requires fetching files from that registry and parsing YAML/markdown — nothing requested is unrelated to that purpose.
Instruction Scope
Runtime instructions are narrowly scoped: fetch provider.companies.yaml, locate repo entries, fetch drift/result.md and spec files from the stated raw.githubusercontent.com base. It only instructs network fetches and YAML/markdown parsing and does not ask to read local files or other env vars. Note: the agent will perform outbound web requests to public GitHub raw URLs, so fetched content is external and should be treated as untrusted.
Install Mechanism
No install spec and no code files — instruction-only skill; nothing is written to disk by an installer.
Credentials
The skill declares no required environment variables, binaries, or credentials. That is proportionate to fetching and summarizing public registry files.
Persistence & Privilege
always is false and there is no install/persistence behavior. The skill does not request elevated or persistent privileges.
Assessment
This skill is low-risk and coherent: it only asks the agent to fetch public files from a DriftaBot GitHub registry and summarize them, and it does not request secrets or install software. Before enabling, consider: (1) confirm you trust the registry GitHub repo (https://github.com/DriftaBot/registry or the metadata homepage) because the agent will fetch and summarize whatever is hosted there; (2) if you require offline or air-gapped operation, do not enable network access; (3) if you rely on these summaries for security- or production-critical decisions, spot-check the raw result.md/spec files yourself to ensure the registry hasn't been tampered with. Otherwise, the skill's scope and requirements are proportional to its stated purpose.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fsr9e5dy05qpk5g4kv01hxs839rmg
131downloads
0stars
1versions
Updated 1mo ago
v1.0.0
MIT-0
Pascoal Gomes@pgomes13
latest
Download

DriftaBot Registry Skill

DriftaBot Registry (https://github.com/DriftaBot/registry) is a public registry that:

  • Tracks 59+ API providers (Stripe, GitHub, Twilio, Slack, Shopify, and many more)
  • Crawls specs daily from each provider's canonical GitHub repository
  • Generates markdown drift reports when breaking changes are detected

When to use this skill

  • User asks "did X API change?", "what broke in Y's API?", "show me drift for Z"
  • User wants to know which providers are tracked in the registry
  • User asks about current API spec versions or types (OpenAPI, GraphQL, gRPC)

How to query the registry

Base URL: https://raw.githubusercontent.com/DriftaBot/registry/main

1. List all providers

Fetch {BASE}/provider.companies.yaml and parse the YAML. Each entry has: name (slug), display_name, specs[].type, specs[].repo.

2. Get a drift report for a provider

Fetch {BASE}/drifts/{org}/{repo}/result.md

  • Find org/repo from the provider's specs[].repo field in provider.companies.yaml
  • Example: stripe → repo stripe/openapi → fetch drifts/stripe/openapi/result.md
  • If the file returns 404 or empty, no breaking changes were detected for that provider.

3. Get the current spec file

Fetch {BASE}/companies/providers/{name}/{type}/{filename}

  • Example: companies/providers/stripe/openapi/stripe.openapi.json

Example queries and responses

"Did Stripe's API break anything?" → Fetch drifts/stripe/openapi/result.md and summarize the breaking changes.

"What API providers are tracked?" → Fetch provider.companies.yaml, list all company names and their spec types.

"What type of spec does Shopify use?" → Find shopify in provider.companies.yaml, return specs[].type (graphql).

Tool usage

Use the web tool (or bash with curl) to fetch URLs. Parse YAML with available tools. Always look up the repo from provider.companies.yaml before constructing drift URLs.

Comments

Loading comments...