Evolve an existing repository toward Harness Engineering by making it more legible to agents, moving critical knowledge into repo-local artifacts, adding pre...
Security Analysis
high confidenceThe skill's instructions, required resources, and metadata are coherent with its stated purpose of auditing and incrementally improving a repository for agent legibility and governance.
The name/description match the actual instructions: audit a repo, add repo-local docs, create executable checks, and wire CI. There are no unrelated requested credentials, binaries, or config paths that don't belong to this task.
SKILL.md stays within scope: it instructs the agent to read repo docs, add artifacts, create checks, and run a local validation command. Two points to note: (1) it recommends using the bun tool for lightweight governance scripts and suggests running `bun run template:check` — but the skill does not declare bun as required, so runtime may fail if bun is not present; (2) the instructions expect the agent to modify the repository and wire CI pipelines, which is appropriate for the purpose but is an action that should be reviewed by a human before merging or pushing.
This is an instruction-only skill with no install spec and no code files — lowest-risk installation footprint. Nothing will be downloaded or executed by the platform as part of an install.
The skill requests no environment variables, credentials, or config paths. The guidance to use local tooling and CI is proportional to its goal and does not ask for unrelated secrets.
The skill is not always-on and declares default model invocation behavior. agents/openai.yaml sets policy.allow_implicit_invocation: true, which permits implicit/autonomous invocation. That is coherent with an agent-facing skill but means the skill can be invoked by the model without an explicit user button press; combine this with the fact the skill edits repos and wires CI — you may want to control invocation or require human review of changes.
Guidance
This skill is internally consistent and does what it says: audit a repo and add docs/checks. Before using it, ensure your agent runtime has any local tools you expect (e.g., bun) or edit the instructions to use your project's tooling; review all proposed repository edits, CI changes, and governance scripts before merging; and if you prefer to prevent autonomous edits, disable implicit invocation or require manual approval so the agent cannot modify repos/CI without a human in the loop. Note: README contains an example local path (C:\Users\kisde...) — harmless example text but verify no accidental personal secrets are included before publishing.
Latest Release
v1.0.0
Initial release. Introduces the Harness Engineering skill for evolving repositories with agent-friendly structure and executable governance. - Documents a step-by-step workflow for auditing and improving repositories. - Emphasizes repo-local artifacts, incremental add-ons, and clear structure (not greenfield rewrites). - Recommends replacing policy-only docs with executable checks and wiring them into CI. - Provides detailed artifact templates and editing rules for legibility and agent continuity. - Supplies audit and delivery checklists to guide repository improvement.
More by @doanbactam
Comprehensive skill for installing, configuring, and managing the OpenClaw ecosystem (Gateway, Channels, Models, Automation, Nodes, and Deployment)
22 stars
Agent Skills Search
2 stars
self-improving-agent
@pskoett · 1,456 stars
Gog
@steipete · 672 stars
Tavily Web Search
@arun-8687 · 620 stars
Find Skills
@JimLiuxinghai · 529 stars
Published by @doanbactam on ClawHub
