healthcheck

Host security hardening and risk-tolerance configuration for OpenClaw deployments. Use when a user asks for security audits, firewall/SSH/update hardening, risk posture, exposure review, OpenClaw cron scheduling for periodic checks, or version status checks on a machine running OpenClaw (laptop, workstation, Pi, VPS).

2.11x

Quality

88%

Does it follow best practices?

Impact

95%

2.11x

Average score across 3 eval scenarios

Securityby

Advisory

Suggest reviewing before use

Quality

Content

77%

Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.

This is a well-crafted, highly actionable skill with a clear multi-step workflow, explicit validation checkpoints, and strong safety guardrails (required confirmations, rollback planning, access preservation). Its main weakness is length—the monolithic structure packs a lot of detail into one file, and some content (non-technical prompt examples, repeated formatting instructions) could be trimmed or split out. The skill demonstrates strong domain knowledge and provides genuinely useful, executable guidance.

Suggestions

Extract OS-specific command references and non-technical prompt examples into a separate reference file to reduce the main skill's token footprint.

Remove repeated reminders about numbered choices formatting—state the convention once at the top and trust Claude to apply it consistently.

Dimension	Reasoning	Score
Conciseness	The skill is fairly long (~200+ lines) and includes some unnecessary explanation (e.g., non-technical prompt examples that Claude could generate on its own, repeated emphasis on numbered choices). However, most content is substantive and task-specific rather than explaining basic concepts. Some tightening is possible—e.g., the model self-check section and repeated 'numbered so users can reply with a single digit' reminders.	2 / 3
Actionability	The skill provides specific, executable commands throughout (e.g., `openclaw security audit --deep`, `ss -ltnup`, `sw_vers`, `tmutil status`, `openclaw cron add --name healthcheck:security-audit`). It includes exact CLI flags, OS-specific command variants, and concrete cron job naming conventions. The guidance is copy-paste ready and covers multiple platforms.	3 / 3
Workflow Clarity	The workflow is clearly sequenced (steps 0-8) with explicit validation checkpoints (step 8 re-checks firewall, ports, access, and re-runs audit). It includes feedback loops (stop on unexpected output), rollback planning, access-preservation strategy, and a required confirmations section that acts as a safety checklist for destructive operations.	3 / 3
Progressive Disclosure	The content is well-structured with clear headers and logical sections, but it's entirely monolithic—everything is in a single file with no references to supporting documents for detailed topics like OS-specific hardening guides, remediation templates, or risk profile details. Some sections (e.g., the full list of non-technical prompts, the detailed cron scheduling instructions) could be split into referenced files to keep the main skill leaner.	2 / 3
	Total	10 / 12 Passed

Description

100%

Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.

This is a well-crafted skill description that clearly defines its scope (OpenClaw security hardening), lists concrete actions, and provides explicit trigger guidance via a 'Use when...' clause. The inclusion of specific device types and multiple natural trigger terms makes it highly discoverable and distinguishable from other skills.

Dimension	Reasoning	Score
Specificity	Lists multiple specific concrete actions: security audits, firewall/SSH/update hardening, risk posture configuration, exposure review, cron scheduling for periodic checks, and version status checks. These are clearly defined capabilities.	3 / 3
Completeness	Clearly answers both 'what' (host security hardening and risk-tolerance configuration for OpenClaw deployments) and 'when' with an explicit 'Use when...' clause listing specific trigger scenarios including security audits, firewall/SSH hardening, risk posture, exposure review, cron scheduling, and version checks.	3 / 3
Trigger Term Quality	Includes strong natural keywords users would say: 'security audits', 'firewall', 'SSH', 'hardening', 'risk posture', 'exposure review', 'cron scheduling', 'version status', 'OpenClaw', plus device types like 'laptop', 'workstation', 'Pi', 'VPS'. Good coverage of natural terms.	3 / 3
Distinctiveness Conflict Risk	Highly distinctive due to the specific product name 'OpenClaw' and the focused domain of host security hardening. The combination of OpenClaw-specific features (cron scheduling, version status) with security hardening creates a clear niche unlikely to conflict with generic security or deployment skills.	3 / 3
	Total	12 / 12 Passed

Validation

100%

Warnings & errors only

Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.

Validation — 11 / 11 Passed

Validation for skill structure

No warnings or errors.

Repository: deepgram/dglabs-deepclaw
Commit: ec8d4f8

Reviewed: about 1 month ago

Table of Contents

Discovery Implementation Validation

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.