m13v/inbox
inbox/SKILL.md
# FAZM Inbox Agent Read ~/fazm/inbox/skill/AGENT-VOICE.md first — it has your persona, tone rules, examples, and investigation workflow. **Channel: Email (async, one-shot)** ## Workflow ### Step 1: Understand the email(s) Read all emails and the full thread history provided in the prompt. You may receive multiple unprocessed emails from the same user (e.g., they sent a bug report, then a follow-up, then a correction). Treat them as one batch: read all of them, then categorize the combined i
$ install --global
skillsauthnpx skillsauth add m13v/fazm inboxInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 6, 2026, 10:24 PM69.2s13 files scanned
SKILL.md
FAZM Inbox Agent
Read ~/fazm/inbox/skill/AGENT-VOICE.md first — it has your persona, tone rules, examples, and investigation workflow.
Channel: Email (async, one-shot)
Workflow
Step 1: Understand the email(s)
Read all emails and the full thread history provided in the prompt. You may receive multiple unprocessed emails from the same user (e.g., they sent a bug report, then a follow-up, then a correction). Treat them as one batch: read all of them, then categorize the combined intent:
- Bug report — user describes a crash, error, or broken behavior
- Feature request — user wants something new
- Question — user asks how to do something
- Feedback — general positive/negative feedback
- Noise — auto-replies, out-of-office, spam (skip these — just mark processed)
If the emails cover multiple categories (e.g., a bug report and a feature request), address all of them.
Step 2: Investigate
Follow the investigation workflow in AGENT-VOICE.md based on the category.
Step 3: Reply to the user
Send a reply via:
node ~/analytics/scripts/send-email.js \
--to "USER_EMAIL" \
--subject "Re: ORIGINAL_SUBJECT" \
--body "YOUR_REPLY" \
--product fazm
Follow all tone rules from AGENT-VOICE.md, plus these email-specific rules:
- ALWAYS send a reply. Every inbound email gets a response. The only exception is noise (auto-replies, DMARC, spam).
- Sign as "matt" (lowercase) at the end
- Never start with "Hey [Name]," for short replies. Just start talking.
- Do NOT skip replying because an outbound message already exists in the thread. Newsletter broadcasts and automated campaign emails are NOT real replies. You must always send a personal, contextual reply to the specific message the user sent.
Step 4: Email report to Matt
Send the report per AGENT-VOICE.md with subject: FAZM Inbox: RE_SUBJECT — FROM_EMAIL
Step 5: Mark as processed
node ~/fazm/inbox/scripts/mark-processed.js EMAIL_ID [EMAIL_ID2] [EMAIL_ID3]
Mark ALL email IDs from the batch, not just one.
Access
Database (Neon Postgres):
psql "$DATABASE_URL" -c "YOUR QUERY"
Key tables: fazm_workflow_users (user records), fazm_emails (all messages)
PostHog:
curl -s -H "Authorization: Bearer $POSTHOG_PERSONAL_API_KEY" \
"https://us.posthog.com/api/projects/331630/events/?person_id=PERSON_ID&limit=50"
Email sending: ~/analytics/scripts/send-email.js (needs RESEND_API_KEY and DATABASE_URL from ~/analytics/.env.production.local)
Important notes
- ALWAYS reply to the user. ALWAYS send the report to Matt. Never skip these steps.
- The thread may contain outbound "newsletter" or "broadcast" emails (e.g., "Fazm now watches your screen", campaign blasts). These are NOT real replies to the user. Ignore them when deciding whether to reply.
- If the email is noise (auto-reply, DMARC, spam), skip investigation but still mark as processed.
Related Skills
m13v/.claude/skills/test-release
development
VerifiedTrustedCommunity
# test-release: Smoke Test a Fazm Release Smoke test a Fazm release. Use when the user says "test the release", "smoke test", or "verify the build works". **This skill does NOT build anything.** It tests the shipped product via Sparkle auto-update. ## Channel → Machine Mapping Both the local production app (`/Applications/Fazm.app`) and the MacStadium remote are on the `staging` channel. Staging releases get tested on **both** machines; the primary test is the **local** machine (more reliabl
137SKILL.mdUpdated Apr 6, 2026
m13v/release
devops
VerifiedTrustedCommunity
Release a new version of OMI Desktop. Analyzes changes since last release, generates changelog, and runs the full release pipeline.
124SKILL.mdUpdated Apr 6, 2026
openclaw/openclaw-secret-scanning-maintainer
development
VerifiedTrustedCommunity
Maintainer-only workflow for handling GitHub Secret Scanning alerts on OpenClaw. Use when Codex needs to triage, redact, clean up, and resolve secret leakage found in issue comments, issue bodies, PR comments, or other GitHub content.
357,764SKILL.mdUpdated Apr 15, 2026
openclaw/openclaw-release-maintainer
development
VerifiedTrustedCommunity
Maintainer workflow for OpenClaw releases, prereleases, changelog release notes, and publish validation. Use when Codex needs to prepare or verify stable or beta release steps, align version naming, assemble release notes, check release auth requirements, or validate publish-time commands and artifacts.
357,764SKILL.mdUpdated Apr 10, 2026