Requirements
- Target platform
- OpenClaw
- Install method
- Manual import
- Extraction
- Extract archive
- Prerequisites
- OpenClaw
- Primary doc
- SKILL.md
Tencent SkillHub ยท Security & Compliance
Ralph Quick Security Check
Fast security spot-check with 10 iterations (~5-10 min). Use when user says 'quick security check', 'pre-deploy audit', 'ralph quick', 'fast security scan',...
skill openclawclawhub Free
Fast security spot-check with 10 iterations (~5-10 min). Use when user says 'quick security check', 'pre-deploy audit', 'ralph quick', 'fast security scan',...
โฌ 0 downloads โ
0 stars Unverified but indexed
Install for OpenClaw
Quick setup
- Download the package from Yavira.
- Extract the archive and review SKILL.md first.
- Import or place the package into your OpenClaw setup.
Package facts
- Download mode
- Yavira redirect
- Package format
- ZIP package
- Source platform
- Tencent SkillHub
- What's included
- SKILL.md, references/severity-guide.md
Validation
- Use the Yavira download entry.
- Review SKILL.md after the package is downloaded.
- Confirm the extracted package contains the expected setup assets.
Install with your agent
Agent handoff
Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.
- Download the package from Yavira.
- Extract it into a folder your agent can access.
- Paste one of the prompts below and point your agent at the extracted folder.
New install
I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Tell me what you changed and call out any manual steps you could not complete.
Upgrade existing
I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Summarize what changed and any follow-up checks I should run.
Trust & source
Release facts
- Source
- Tencent SkillHub
- Verification
- Indexed source record
- Version
- 3.0.0
Provenance
- Publisher
- dorukardahan
- Source page
- View original listing
- Canonical URL
- Open canonical page
Documentation
Ralph Quick โ 10 Iterations (~5-10 min)
Fast security spot-check for pre-deployment or daily security hygiene.
References
Severity definitions
Execution Engine
YOU MUST follow this loop for EVERY iteration: STATE: Read current iteration (start: 1) ACTION: Perform ONE check from current phase VERIFY: Before reporting FAIL โ read actual code, check if a library handles it, check DB constraints, check if dev-only REPORT: Output iteration result in the format below INCREMENT: iteration = iteration + 1 CONTINUE: IF iteration <= 10 GOTO Step 1 FINAL: Generate summary report saved to .ralph-report.md Critical rules: ONE check per iteration (not all at once) ALWAYS show iteration counter [QUICK-X/10] NEVER skip iterations If VERIFY is inconclusive: mark NEEDS_REVIEW, not FAIL
Per-Iteration Output
[QUICK-{N}/10] {check_name} Target: {file or system component} Result: {PASS|FAIL|WARN|N/A} Confidence: {VERIFIED|LIKELY|PATTERN_MATCH|NEEDS_REVIEW} Finding: {description or "Clean"} โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Persona
Senior security engineer โ evidence-based, critical focus, maximum efficiency.
Phase Structure
IterCheck1Auto-detect stack, infra, git sync2.env in .gitignore check3Hardcoded secrets scan4DEBUG mode detection5SQL injection patterns6Command injection patterns7Authentication on sensitive endpoints8Rate limiting presence9Container running as root?10Summary & recommendations
Auto-Detect (Iteration 1)
Deterministic order: git rev-parse --show-toplevel Stack: package.json, pyproject.toml, requirements.txt, go.mod Infra: Dockerfile, docker-compose.yml, k8s manifests CI/CD: .github/workflows, .gitlab-ci.yml Skip non-applicable checks, mark N/A
Confidence Levels
LevelMeaningVERIFIEDConfirmed with code reading or PoCLIKELYStrong evidence, no PoCPATTERN_MATCHKeyword match only โ flag for human reviewNEEDS_REVIEWInconclusive
Severity
LevelCVSSResponseCRITICAL9.0-10.0Stop and fix immediatelyHIGH7.0-8.9Fix before deploymentMEDIUM4.0-6.9Schedule fixLOW0.1-3.9Note for later
Report File
On start: if .ralph-report.md exists, rename to .ralph-report-{YYYY-MM-DD-HHmm}.md. Save final report at end.
Parameters
ParamDefaultOptions--iterations101-20--focusallsecrets, owasp, infra, all Note: Parameters are AI-interpreted instructions, not parsed CLI args.
When to Use
Pre-deployment quick check Daily security spot-check Verifying a specific fix For deeper audits: /ralph-security (100), /ralph-ultra (1,000), /ralph-promax (10,000).
Category context
Identity, auth, scanning, governance, audit, and operational guardrails.
Source: Tencent SkillHub
Largest current source with strong distribution and engagement signals.
Package contents
Included in package
2 Docs
- SKILL.md
- references/severity-guide.md