backbay-labs/clawdstrike-merge-verifier
.agents/skills/clawdstrike-merge-verifier/SKILL.md
Use when a ClawdStrike lane branch is ready for review and integration and needs verification, scope-drift checks, shared-file wiring, and merge-gate enforcement before landing.
$ install --global
skillsauthnpx skillsauth add backbay-labs/clawdstrike clawdstrike-merge-verifierInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 20, 2026, 6:50 AM12.2s1 file scanned
SKILL.md
- name:
- clawdstrike-merge-verifier
- description:
- Use when a ClawdStrike lane branch is ready for review and integration and needs verification, scope-drift checks, shared-file wiring, and merge-gate enforcement before landing.
ClawdStrike Merge Verifier
Use this skill when a lane branch is complete enough to review, integrate, or merge.
Outcomes
Drive toward:
- review findings ordered by severity
- verification command results
- shared-file integration plan for orchestrator-owned files
- merge or rework recommendation
Workflow
- Read the verification matrix and dependency graph first.
- Inspect the lane diff for scope drift.
- Run the lane's verification commands.
- Review for ownership boundary violations and shared-file conflicts.
- If the lane touches shared registration files, move those edits into an orchestrator integration commit instead of merging them blindly.
- Decide whether the lane is mergeable, needs follow-up, or must be restacked.
Required Inputs
.codex/swarm/lanes.tsv.codex/swarm/waves.tsv- the initiative docs and verification plan
Review Bias
Prioritize:
- regressions
- broken invariants
- missing verification
- ownership boundary violations
- migration conflicts
Summaries are secondary to findings.
Related Skills
backbay-labs/hello-secure
testing
VerifiedTrustedCommunity
A simple skill demonstrating clawdstrike security
273SKILL.mdUpdated Apr 3, 2026
backbay-labs/examples/openclaw-plugin/skills/hello
tools
VerifiedTrustedCommunity
# Hello Skill A simple greeting skill that demonstrates secure agent operation. ## Description This skill allows the agent to greet users and perform basic file operations within the allowed workspace. ## Capabilities - Generate personalized greetings - Read files from the workspace - Write greeting logs to the output directory ## Usage Ask the agent: - "Say hello to Alice" - "Read the welcome message from data/welcome.txt" - "Log a greeting for Bob" ## Examples ### Basic Greeting **Us
273SKILL.mdUpdated Apr 3, 2026
backbay-labs/examples/bb-edr/skills/edr-triage
testing
VerifiedTrustedCommunity
# bb-edr: Triage Skill Use this skill to turn clawdstrike audit logs into an incident report and a minimal response plan. ## Inputs - `.hush/audit.jsonl` (JSONL) — clawdstrike audit events (allowed/denied, guard, reason). - `policy.yaml` — the active security policy. ## Task 1. Read and summarize the last ~50 audit events. 2. Focus on **denied** events first: - Group by `guard` (e.g., `forbidden_path`, `egress`, `patch_integrity`) - Identify likely intent (misconfiguration vs. suspici
273SKILL.mdUpdated Apr 3, 2026
backbay-labs/cursor-plugin/skills/threat-hunt
tools
VerifiedTrustedCommunity
Threat hunting and security event investigation
273SKILL.mdUpdated Apr 3, 2026