{
  "schemaVersion": "1.0",
  "item": {
    "slug": "ralph-quick",
    "name": "Ralph Quick Security Check",
    "source": "tencent",
    "type": "skill",
    "category": "安全合规",
    "sourceUrl": "https://clawhub.ai/dorukardahan/ralph-quick",
    "canonicalUrl": "https://clawhub.ai/dorukardahan/ralph-quick",
    "targetPlatform": "OpenClaw"
  },
  "install": {
    "downloadMode": "redirect",
    "downloadUrl": "/downloads/ralph-quick",
    "sourceDownloadUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=ralph-quick",
    "sourcePlatform": "tencent",
    "targetPlatform": "OpenClaw",
    "installMethod": "Manual import",
    "extraction": "Extract archive",
    "prerequisites": [
      "OpenClaw"
    ],
    "packageFormat": "ZIP package",
    "includedAssets": [
      "SKILL.md",
      "references/severity-guide.md"
    ],
    "primaryDoc": "SKILL.md",
    "quickSetup": [
      "Download the package from Yavira.",
      "Extract the archive and review SKILL.md first.",
      "Import or place the package into your OpenClaw setup."
    ],
    "agentAssist": {
      "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.",
      "steps": [
        "Download the package from Yavira.",
        "Extract it into a folder your agent can access.",
        "Paste one of the prompts below and point your agent at the extracted folder."
      ],
      "prompts": [
        {
          "label": "New install",
          "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Tell me what you changed and call out any manual steps you could not complete."
        },
        {
          "label": "Upgrade existing",
          "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Summarize what changed and any follow-up checks I should run."
        }
      ]
    },
    "sourceHealth": {
      "source": "tencent",
      "slug": "ralph-quick",
      "status": "healthy",
      "reason": "direct_download_ok",
      "recommendedAction": "download",
      "checkedAt": "2026-04-29T12:12:27.362Z",
      "expiresAt": "2026-05-06T12:12:27.362Z",
      "httpStatus": 200,
      "finalUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=ralph-quick",
      "contentType": "application/zip",
      "probeMethod": "head",
      "details": {
        "probeUrl": "https://wry-manatee-359.convex.site/api/v1/download?slug=ralph-quick",
        "contentDisposition": "attachment; filename=\"ralph-quick-3.0.0.zip\"",
        "redirectLocation": null,
        "bodySnippet": null,
        "slug": "ralph-quick"
      },
      "scope": "item",
      "summary": "Item download looks usable.",
      "detail": "Yavira can redirect you to the upstream package for this item.",
      "primaryActionLabel": "Download for OpenClaw",
      "primaryActionHref": "/downloads/ralph-quick"
    },
    "validation": {
      "installChecklist": [
        "Use the Yavira download entry.",
        "Review SKILL.md after the package is downloaded.",
        "Confirm the extracted package contains the expected setup assets."
      ],
      "postInstallChecks": [
        "Confirm the extracted package includes the expected docs or setup files.",
        "Validate the skill or prompts are available in your target agent workspace.",
        "Capture any manual follow-up steps the agent could not complete."
      ]
    },
    "downloadPageUrl": "https://openagent3.xyz/downloads/ralph-quick",
    "agentPageUrl": "https://openagent3.xyz/skills/ralph-quick/agent",
    "manifestUrl": "https://openagent3.xyz/skills/ralph-quick/agent.json",
    "briefUrl": "https://openagent3.xyz/skills/ralph-quick/agent.md"
  },
  "agentAssist": {
    "summary": "Hand the extracted package to your coding agent with a concrete install brief instead of figuring it out manually.",
    "steps": [
      "Download the package from Yavira.",
      "Extract it into a folder your agent can access.",
      "Paste one of the prompts below and point your agent at the extracted folder."
    ],
    "prompts": [
      {
        "label": "New install",
        "body": "I downloaded a skill package from Yavira. Read SKILL.md from the extracted folder and install it by following the included instructions. Tell me what you changed and call out any manual steps you could not complete."
      },
      {
        "label": "Upgrade existing",
        "body": "I downloaded an updated skill package from Yavira. Read SKILL.md from the extracted folder, compare it with my current installation, and upgrade it while preserving any custom configuration unless the package docs explicitly say otherwise. Summarize what changed and any follow-up checks I should run."
      }
    ]
  },
  "documentation": {
    "source": "clawhub",
    "primaryDoc": "SKILL.md",
    "sections": [
      {
        "title": "Ralph Quick — 10 Iterations (~5-10 min)",
        "body": "Fast security spot-check for pre-deployment or daily security hygiene."
      },
      {
        "title": "References",
        "body": "Severity definitions"
      },
      {
        "title": "Execution Engine",
        "body": "YOU MUST follow this loop for EVERY iteration:\n\nSTATE: Read current iteration (start: 1)\nACTION: Perform ONE check from current phase\nVERIFY: Before reporting FAIL — read actual code, check if a library handles it, check DB constraints, check if dev-only\nREPORT: Output iteration result in the format below\nINCREMENT: iteration = iteration + 1\nCONTINUE: IF iteration <= 10 GOTO Step 1\nFINAL: Generate summary report saved to .ralph-report.md\n\nCritical rules:\n\nONE check per iteration (not all at once)\nALWAYS show iteration counter [QUICK-X/10]\nNEVER skip iterations\nIf VERIFY is inconclusive: mark NEEDS_REVIEW, not FAIL"
      },
      {
        "title": "Per-Iteration Output",
        "body": "[QUICK-{N}/10] {check_name}\nTarget: {file or system component}\nResult: {PASS|FAIL|WARN|N/A}\nConfidence: {VERIFIED|LIKELY|PATTERN_MATCH|NEEDS_REVIEW}\nFinding: {description or \"Clean\"}\n───────────────────────────────"
      },
      {
        "title": "Persona",
        "body": "Senior security engineer — evidence-based, critical focus, maximum efficiency."
      },
      {
        "title": "Phase Structure",
        "body": "IterCheck1Auto-detect stack, infra, git sync2.env in .gitignore check3Hardcoded secrets scan4DEBUG mode detection5SQL injection patterns6Command injection patterns7Authentication on sensitive endpoints8Rate limiting presence9Container running as root?10Summary & recommendations"
      },
      {
        "title": "Auto-Detect (Iteration 1)",
        "body": "Deterministic order:\n\ngit rev-parse --show-toplevel\nStack: package.json, pyproject.toml, requirements.txt, go.mod\nInfra: Dockerfile, docker-compose.yml, k8s manifests\nCI/CD: .github/workflows, .gitlab-ci.yml\nSkip non-applicable checks, mark N/A"
      },
      {
        "title": "Confidence Levels",
        "body": "LevelMeaningVERIFIEDConfirmed with code reading or PoCLIKELYStrong evidence, no PoCPATTERN_MATCHKeyword match only — flag for human reviewNEEDS_REVIEWInconclusive"
      },
      {
        "title": "Severity",
        "body": "LevelCVSSResponseCRITICAL9.0-10.0Stop and fix immediatelyHIGH7.0-8.9Fix before deploymentMEDIUM4.0-6.9Schedule fixLOW0.1-3.9Note for later"
      },
      {
        "title": "Report File",
        "body": "On start: if .ralph-report.md exists, rename to .ralph-report-{YYYY-MM-DD-HHmm}.md. Save final report at end."
      },
      {
        "title": "Parameters",
        "body": "ParamDefaultOptions--iterations101-20--focusallsecrets, owasp, infra, all\n\nNote: Parameters are AI-interpreted instructions, not parsed CLI args."
      },
      {
        "title": "When to Use",
        "body": "Pre-deployment quick check\nDaily security spot-check\nVerifying a specific fix\n\nFor deeper audits: /ralph-security (100), /ralph-ultra (1,000), /ralph-promax (10,000)."
      }
    ],
    "body": "Ralph Quick — 10 Iterations (~5-10 min)\n\nFast security spot-check for pre-deployment or daily security hygiene.\n\nReferences\nSeverity definitions\nInstructions\nExecution Engine\n\nYOU MUST follow this loop for EVERY iteration:\n\nSTATE: Read current iteration (start: 1)\nACTION: Perform ONE check from current phase\nVERIFY: Before reporting FAIL — read actual code, check if a library handles it, check DB constraints, check if dev-only\nREPORT: Output iteration result in the format below\nINCREMENT: iteration = iteration + 1\nCONTINUE: IF iteration <= 10 GOTO Step 1\nFINAL: Generate summary report saved to .ralph-report.md\n\nCritical rules:\n\nONE check per iteration (not all at once)\nALWAYS show iteration counter [QUICK-X/10]\nNEVER skip iterations\nIf VERIFY is inconclusive: mark NEEDS_REVIEW, not FAIL\nPer-Iteration Output\n[QUICK-{N}/10] {check_name}\nTarget: {file or system component}\nResult: {PASS|FAIL|WARN|N/A}\nConfidence: {VERIFIED|LIKELY|PATTERN_MATCH|NEEDS_REVIEW}\nFinding: {description or \"Clean\"}\n───────────────────────────────\n\nPersona\n\nSenior security engineer — evidence-based, critical focus, maximum efficiency.\n\nPhase Structure\nIter\tCheck\n1\tAuto-detect stack, infra, git sync\n2\t.env in .gitignore check\n3\tHardcoded secrets scan\n4\tDEBUG mode detection\n5\tSQL injection patterns\n6\tCommand injection patterns\n7\tAuthentication on sensitive endpoints\n8\tRate limiting presence\n9\tContainer running as root?\n10\tSummary & recommendations\nAuto-Detect (Iteration 1)\n\nDeterministic order:\n\ngit rev-parse --show-toplevel\nStack: package.json, pyproject.toml, requirements.txt, go.mod\nInfra: Dockerfile, docker-compose.yml, k8s manifests\nCI/CD: .github/workflows, .gitlab-ci.yml\nSkip non-applicable checks, mark N/A\nConfidence Levels\nLevel\tMeaning\nVERIFIED\tConfirmed with code reading or PoC\nLIKELY\tStrong evidence, no PoC\nPATTERN_MATCH\tKeyword match only — flag for human review\nNEEDS_REVIEW\tInconclusive\nSeverity\nLevel\tCVSS\tResponse\nCRITICAL\t9.0-10.0\tStop and fix immediately\nHIGH\t7.0-8.9\tFix before deployment\nMEDIUM\t4.0-6.9\tSchedule fix\nLOW\t0.1-3.9\tNote for later\nReport File\n\nOn start: if .ralph-report.md exists, rename to .ralph-report-{YYYY-MM-DD-HHmm}.md. Save final report at end.\n\nParameters\nParam\tDefault\tOptions\n--iterations\t10\t1-20\n--focus\tall\tsecrets, owasp, infra, all\n\nNote: Parameters are AI-interpreted instructions, not parsed CLI args.\n\nWhen to Use\nPre-deployment quick check\nDaily security spot-check\nVerifying a specific fix\n\nFor deeper audits: /ralph-security (100), /ralph-ultra (1,000), /ralph-promax (10,000)."
  },
  "trust": {
    "sourceLabel": "tencent",
    "provenanceUrl": "https://clawhub.ai/dorukardahan/ralph-quick",
    "publisherUrl": "https://clawhub.ai/dorukardahan/ralph-quick",
    "owner": "dorukardahan",
    "version": "3.0.0",
    "license": null,
    "verificationStatus": "Indexed source record"
  },
  "links": {
    "detailUrl": "https://openagent3.xyz/skills/ralph-quick",
    "downloadUrl": "https://openagent3.xyz/downloads/ralph-quick",
    "agentUrl": "https://openagent3.xyz/skills/ralph-quick/agent",
    "manifestUrl": "https://openagent3.xyz/skills/ralph-quick/agent.json",
    "briefUrl": "https://openagent3.xyz/skills/ralph-quick/agent.md"
  }
}