backbay-labs/clawdstrike-spec-and-roadmap
.agents/skills/clawdstrike-spec-and-roadmap/SKILL.md
Use when architecture docs exist and need to be hardened into API, storage, migration, protocol, roadmap, or ticket-level specifications for ClawdStrike work.
$ install --global
skillsauthnpx skillsauth add backbay-labs/clawdstrike clawdstrike-spec-and-roadmapInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 3, 2026, 7:39 PM111.0s2 files scanned
SKILL.md
- name:
- clawdstrike-spec-and-roadmap
- description:
- Use when architecture docs exist and need to be hardened into API, storage, migration, protocol, roadmap, or ticket-level specifications for ClawdStrike work.
ClawdStrike Spec and Roadmap
Use this skill after the architecture is real enough that the next step is not more framing, but sharper specs and executable plans.
Outcomes
Drive toward these outputs:
- harder API and storage specs
- migration plans
- implementation milestones
- ticket-style work breakdown
- delivery roadmap tied back to code and docs
Workflow
- Read the architecture and current-state docs first.
- Identify which concepts still need a harder contract.
- Prefer one focused spec per concern rather than bloated umbrella documents.
- Turn each important spec into implementation slices and migration order.
- Keep every plan tied to existing crates, routes, apps, or docs.
Repo Discipline
- Keep the docs in the docs area that already owns the subject instead of scattering plans across unrelated folders.
- Update
docs/src/SUMMARY.mdonly when adding user-facing book docs underdocs/src/. - Use stable file names that match the concept:
*-api-contract.md,*-storage-model.md,*-implementation.md,*-roadmap.md.
Documents To Reuse
Read the most relevant existing docs instead of repeating them:
docs/plans/README.mddocs/specs/*.mddocs/roadmaps/*.mddocs/plans/multi-agent/*.mdwhen coordination mattersapps/terminal/docs/dispatch-*.mdfor the current TUI dispatch initiative
Stop Condition
Stop when the plan is specific enough that an implementation worker can pick up one slice without another planning roundtrip.
Related Skills
backbay-labs/hello-secure
testing
VerifiedTrustedCommunity
A simple skill demonstrating clawdstrike security
273SKILL.mdUpdated Apr 3, 2026
backbay-labs/examples/openclaw-plugin/skills/hello
tools
VerifiedTrustedCommunity
# Hello Skill A simple greeting skill that demonstrates secure agent operation. ## Description This skill allows the agent to greet users and perform basic file operations within the allowed workspace. ## Capabilities - Generate personalized greetings - Read files from the workspace - Write greeting logs to the output directory ## Usage Ask the agent: - "Say hello to Alice" - "Read the welcome message from data/welcome.txt" - "Log a greeting for Bob" ## Examples ### Basic Greeting **Us
273SKILL.mdUpdated Apr 3, 2026
backbay-labs/examples/bb-edr/skills/edr-triage
testing
VerifiedTrustedCommunity
# bb-edr: Triage Skill Use this skill to turn clawdstrike audit logs into an incident report and a minimal response plan. ## Inputs - `.hush/audit.jsonl` (JSONL) — clawdstrike audit events (allowed/denied, guard, reason). - `policy.yaml` — the active security policy. ## Task 1. Read and summarize the last ~50 audit events. 2. Focus on **denied** events first: - Group by `guard` (e.g., `forbidden_path`, `egress`, `patch_integrity`) - Identify likely intent (misconfiguration vs. suspici
273SKILL.mdUpdated Apr 3, 2026
backbay-labs/cursor-plugin/skills/threat-hunt
tools
VerifiedTrustedCommunity
Threat hunting and security event investigation
273SKILL.mdUpdated Apr 3, 2026