NeuBird AI Production Ops Agent

v1.0.1

Give your assistant production ops superpowers via NeuBird. Use when asked about infrastructure health, cloud costs, incidents, latency, error rates, deploym...

⭐ 0· 8·0 current·0 all-time

by@neubird

MIT-0

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

The name/description match the SKILL.md: it instructs the agent to run the neubird CLI to perform investigations, health checks, cost analysis, etc. Requiring the 'neubird' binary is exactly what you'd expect for this functionality and no unrelated binaries, env vars, or config paths are requested.

ℹ

Instruction Scope

The instructions stay within the expected scope: run 'neubird' commands, manage a session file in /tmp, and narrate findings. Two things to note: (1) the agent is instructed to infer project names from context which could lead to accidentally running against 'prod' if ambiguity isn't resolved — the doc does say to ask when ambiguous, but you should confirm the agent will prompt before executing. (2) session files are written to /tmp (e.g., /tmp/nb-<timestamp>.json) and may contain investigation context; the skill provides a --cleanup step but users should be aware of sensitive data in /tmp.

✓

Install Mechanism

This is instruction-only with no install spec and no downloaded code. Nothing is written to disk by the skill itself except the neubird CLI's own session files (described in the CLI behavior). This is the lowest-risk install surface.

✓

Credentials

The skill requests no environment variables or credentials. It relies on the system-installed neubird CLI and whatever authentication the user has configured for that tool; that is proportionate to a CLI wrapper. Users should verify the neubird CLI is authenticated to the correct account and that its permissions are appropriate (principle of least privilege).

✓

Persistence & Privilege

always:false (default) and no requests to modify other skills or system agent config. The skill can be invoked autonomously by the agent (platform default) — this is expected for an operational helper but means the agent could run the CLI if allowed, so confirm prompts/approval behavior for sensitive actions.

Assessment

This skill is a straightforward wrapper around the neubird CLI — before installing/using it, verify you trust the neubird binary on your system and that it is authenticated to the correct account. Be aware the tool writes session files to /tmp (they may contain investigation context); use the provided --cleanup or securely remove session files when finished. Ensure the agent will confirm project selection (especially for 'prod') and that the neubird CLI's credentials/role have only the permissions you intend (read-only or scoped access if possible). No additional environment variables or downloads are required by the skill itself. The static scanner found no code to analyze (instruction-only).

Like a lobster shell, security has layers — review code before you run it.

latestvk97909ryrxny2e2gham4xkwr19845pz0

License

MIT-0

Free to use, modify, and redistribute. No attribution required.

Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔍 Clawdis

Binsneubird

SKILL.md

NeuBird Ops Agent

Production ops superpowers, powered by NeuBird — the AI SRE that lives in your terminal.

When to Use

✅ USE this skill when the user asks about anything in production:

They say...	Use this capability
"Any issues right now?" / "Is prod healthy?"	`health`
"Are we wasting money?" / "What's our cloud spend?"	`cost`
"Why is X broken?" / "Any 403s?" / "What's causing errors?"	`investigate`
"Why is the API slow?" / "Find latency outliers"	`performance`
"What could blow up tonight?" / "Any risk on the horizon?"	`predict`
"Give me the full picture" / "Deep health sweep"	`deep-dive`
"What's quietly degrading?" / "Any silent failures?"	`silent-failures`
"Did that deploy break anything?" / "Is this PR risky?"	`change-risk`
"If payments goes down what else dies?" / "Map dependencies"	`blast-radius`

❌ DON'T use this skill when:

neubird desktop binary is not installed — direct user to neubird.ai
The question is about code review, writing code, or pre-deploy checks
The user wants a dashboard — open the observability platform directly

CLI Interface

# List available projects
neubird projects

# Run a named capability
neubird run <capability> --project <project-name> --session /tmp/

# Free-form investigation (alias for 'run investigate')
neubird investigate "<prompt>" --project <project-name> --session /tmp/

# Follow-up question (project inherited from session)
neubird run <capability> --session /tmp/nb-<timestamp>.json

# Clean up session when done
neubird run --cleanup --session /tmp/nb-<timestamp>.json

All 9 Capabilities

Capability	CLI name	What it does
🏥 Health Check	`health`	Full infrastructure health sweep
💰 Cost Analysis	`cost`	Cloud cost baseline + 24h spend projection
🔍 Investigate	`investigate`	Free-form investigation prompt
⚡ Performance	`performance`	Find latency outliers and slow queries
🔮 Predict Risk	`predict`	What could go wrong in the next 24h?
📊 Deep Dive	`deep-dive`	Full health sweep with 24h lookback
🔬 Silent Failures	`silent-failures`	Find quietly degrading services
🧬 Change Risk	`change-risk`	Assess risk from recent deployments and PRs
💥 Blast Radius	`blast-radius`	Map dependency chains and cascade failure risk

Session Behavior

--session /tmp/ → auto-generates /tmp/nb-<timestamp>.json, prints path to stderr
--session /tmp/nb-123.json → creates on first call, resumes on follow-ups
--project required on first call; inherited from session on follow-ups
Use --cleanup when done to remove the session file

Exit Codes

Code	Meaning
0	Complete, findings on stdout
1	Failed or timed out
2	Not authenticated — run `neubird login`
3	No connected environment / project not found

Output Format

Investigations stream over 60–180s. Output has two layers:

Spinner on stderr — ⠋ thinking, ⠙ exploring, etc. — ignore
Findings on stdout — narrative markdown, ends with Completed in XmYs

Use --verbose to see tool calls and MCP server logs during debugging.

Agent Workflow

Understand the request — identify which capability fits (see table above); for ambiguous requests default to investigate
Determine the project — infer from context ("prod" → prod_cop, "staging" → staging_auto); if ambiguous run neubird projects and ask
Set expectations — tell the user: "Running [capability] against [project] — this takes 1–3 minutes..."

Start the run — session path is printed to stderr as Session: /tmp/nb-<timestamp>.json:

For a named capability:

neubird run <capability> --project <project-name> --session /tmp/

For a free-form investigation:

neubird investigate "<user prompt>" --project <project-name> --session /tmp/

Narrate findings — lead with the bottom line, don't dump raw output:
- State the headline conclusion first
- Summarize key findings with supporting evidence
- Give a concrete recommended action when warranted
- Offer to drill deeper or follow up
Follow-up if needed — reference the session path, no --project required:
```
neubird investigate "<follow-up>" --session /tmp/nb-<timestamp>.json
```

Clean up when done:

neubird run --cleanup --session /tmp/nb-<timestamp>.json

Project Names

Common project slugs: prod_cop, staging_auto, dev_cop, prod_cop_sev2. Run neubird projects to list all available projects with their IDs.

References

Load these when relevant to the findings:

Topic	File	Load When
Kubernetes signals	`references/kubernetes.md`	Pod crashes, node issues, resource exhaustion
Cloud infrastructure	`references/cloud.md`	AWS/GCP/Azure cost, networking, managed services
Application & APM	`references/application.md`	Latency, error rates, traces, deployments
Database & storage	`references/database.md`	Connection pools, slow queries, replication lag
Escalation & comms	`references/escalation.md`	Severity, stakeholder comms, post-incident docs

Constraints

MUST DO

Lead every response with the headline conclusion
State blast radius / scope before recommending action
Give a concrete next step, not just analysis
Offer to drill deeper after every finding
Clean up session files when done

MUST NOT DO

Dump raw neubird output without narration
Fabricate findings if the command fails — report the error clearly
Skip scope/blast radius — "unknown" is valid but must be stated
Recommend rollback without checking if a recent deploy is in scope

Files

6 total

Select a file

Select a file to preview.

Comments

Loading comments…