Skip to main content

ops-orchestrate

Automates multi-project orchestration by auditing tasks, dispatching agents, and managing dependencies for efficient project execution.

Install this skill

or
8/100

Security score

The ops-orchestrate skill was audited on May 29, 2026 and we found 10 security issues across 4 threat categories, including 5 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

high line 42

Template literal with variable interpolation in command context

SourceSKILL.md
421. **Preferences**: `cat ${CLAUDE_PLUGIN_DATA_DIR:-$HOME/.claude/plugins/data/ops-ops-marketplace}/preferences.json` — read `owner`, `timezone`, `yolo_enabled`, registry path
high line 43

Template literal with variable interpolation in command context

SourceSKILL.md
432. **Daemon health**: `cat ${CLAUDE_PLUGIN_DATA_DIR}/daemon-health.json` — ensure all services healthy before dispatching
high line 45

Template literal with variable interpolation in command context

SourceSKILL.md
454. **Ops memories**: Check `${CLAUDE_PLUGIN_DATA_DIR}/memories/topics_active.md` for priority context
medium line 159

Template literal with variable interpolation in command context

SourceSKILL.md
159```bash
medium line 175

Template literal with variable interpolation in command context

SourceSKILL.md
175```bash
high line 69

Curl to non-GitHub URL

SourceSKILL.md
69| `curl -H "Authorization: Bearer $SENTRY_AUTH_TOKEN" "https://sentry.io/api/0/projects/<org>/<proj>/issues/?query=is:unresolved"` | API fallback | JSON array |
high line 75

Curl to non-GitHub URL

SourceSKILL.md
75| `curl -X POST https://api.linear.app/graphql -H "Authorization: $LINEAR_API_KEY" -H "Content-Type: application/json" -d '{"query":"{ issues(filter: {state: {type: {in: [\"started\",\"unstarted\"]}}}
medium line 470

Access to .env file

SourceSKILL.md
470- **NEVER touch `.env`, credentials, or secrets files** — flag and skip
low line 69

External URL reference

SourceSKILL.md
69| `curl -H "Authorization: Bearer $SENTRY_AUTH_TOKEN" "https://sentry.io/api/0/projects/<org>/<proj>/issues/?query=is:unresolved"` | API fallback | JSON array |
low line 75

External URL reference

SourceSKILL.md
75| `curl -X POST https://api.linear.app/graphql -H "Authorization: $LINEAR_API_KEY" -H "Content-Type: application/json" -d '{"query":"{ issues(filter: {state: {type: {in: [\"started\",\"unstarted\"]}}}
Scanned on May 29, 2026
View Security Dashboard
Installation guide →
GitHub Stars 3.0K
Rate this skill
Categoryproject management
UpdatedJune 10, 2026
openclawbackenddevopsproject-manageroperations-managertechnical-pmdevops-srebusiness-process-analystgithubsentrylinearproject managementoperationsproductdevelopment
davepoon/buildwithclaude