Sales Engineer
v2.1.1Analyzes RFP/RFI responses for coverage gaps, builds competitive feature comparison matrices, and plans proof-of-concept (POC) engagements for pre-sales engi...
⭐ 0· 427·4 current·4 all-time
byAlireza Rezvani@alirezarezvani
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
Name/description (RFP analysis, competitive matrices, POC planning) align with the provided templates, references, and three Python scripts that implement analysis and planning functions. The artifacts included are proportional to the stated purpose.
Instruction Scope
SKILL.md instructs the agent/user to execute the bundled Python scripts against bundled JSON/MD templates and to produce local JSON/MD outputs. The instructions do not ask for unrelated system files, secrets, or external endpoints. However the runtime behavior depends entirely on the contents of the three scripts (not fully shown here), which could perform network I/O, file I/O, or other actions; the SKILL.md does not explicitly document or restrict that behavior.
Install Mechanism
No install spec is provided (instruction-only), which is low-risk from an installer perspective. However, the bundle includes substantial Python scripts that will be executed; there is no packaged dependency declaration or mention of required Python/interpreter versions. This is not inherently malicious but means code review is recommended before running.
Credentials
The skill declares no required environment variables, credentials, or config paths, which is appropriate for its claimed purpose. There are no unexpected credential requests in the manifest or SKILL.md.
Persistence & Privilege
The skill does not request always:true, has no install hook, and does not claim system-wide changes. It will only run when invoked per the SKILL.md workflow; no elevated persistence or cross-skill modification is requested.
Assessment
This skill appears coherent for sales engineering tasks and includes local Python scripts and many templates. Before installing or running it: 1) Manually inspect the three Python scripts (scripts/rfp_response_analyzer.py, scripts/competitive_matrix_builder.py, scripts/poc_planner.py) for any network calls, subprocess execution, or reads of system paths you don't expect. 2) Note SKILL.md shows 'python' commands but the skill did not declare a required 'python' binary—ensure you run them in a controlled environment with a known Python interpreter. 3) Run the scripts first in an isolated sandbox/container or on a non-production machine with sample data. 4) If the scripts will process customer data, confirm they do not exfiltrate secrets or send data to unknown endpoints; check for any HTTP requests, uploads, or hard-coded endpoints. 5) Because the source and homepage are unknown, treat the package as untrusted until code review is complete. If you don't want to review the code yourself, ask a security or engineering colleague to audit the scripts before using them with real customer data.Like a lobster shell, security has layers — review code before you run it.
latestvk978d3qgp9v41szvvx31sgp7w182ppyt
License
MIT-0
Free to use, modify, and redistribute. No attribution required.