Run any Skill in Manus with one click

preflight-validator

Stars22

Forks3

UpdatedMay 15, 2026 at 04:37

On-demand wrapper over scripts/preflight/run-all.sh. Runs Tier 1 bash linters against a file, command, or arbitrary content. Returns 0 pass / 1 warn / 2 fail. Used by /aura-frog:preflight check and contributors authoring custom hooks.

Installation

Install with Codex or Claude Copy this prompt, paste it into Codex, Claude, or another assistant, and let it review the skill page and install it for you.

Run Skill in Manus

Source

nguyenthienthanh

nguyenthienthanh/aura-frog

View GitHub Repository View Creator Repositories

Download

Run Skill in Manus

Related occupationsSOC

Based on SOC occupation classification

Software Quality Assurance Analysts and TestersComputer and Mathematical Occupations·SOC 15-1253

SKILL.md

readonly

name	preflight-validator
description	On-demand wrapper over scripts/preflight/run-all.sh. Runs Tier 1 bash linters against a file, command, or arbitrary content. Returns 0 pass / 1 warn / 2 fail. Used by /aura-frog:preflight check and contributors authoring custom hooks.
when_to_use	Before committing a markdown file, before piping risky shell content, when CI fails on pre-flight
allowed-tools	Bash
effort	low
user-invocable	false

AI-consumed reference. Optimized for Claude to read during execution. Human-readable explanation: see docs/architecture/HIERARCHICAL_PLANNING.md or docs/getting-started/ depending on topic.

Pre-flight Validator

STATUS — v3.7.0-beta.1. Thin wrapper over aura-frog/scripts/preflight/run-all.sh.

When this skill runs vs. when the hook runs

hooks/pre-flight-validate.cjs — auto-fires on every PreToolUse for Bash/Edit/Write/Read. Blocks tool call on fail. You don't have to do anything for this — it's automatic.
This skill — explicit invocation when you want to validate something the hook doesn't see. Examples: validating a markdown file before committing, dry-running a Bash command's safety, batching a directory of plan files through frontmatter validation.

Behavior

Resolve target: file path / Bash command string / stdin content
Run bash aura-frog/scripts/preflight/run-all.sh with the appropriate flags
Surface exit code + stderr to caller

Tier 1 linters (per spec §20.2)

Script	Checks
`validate-frontmatter.sh`	YAML frontmatter on plan/skill/agent/rule/command markdown
`validate-tool-input.sh`	Tool input shape — required fields, absolute paths, no-op edits
`validate-tool-output.sh`	ANSI-escape volume, prompt-injection phrases, JSON-claim sanity
`check-path-safety.sh`	Reject path traversals + system files (`/etc/passwd` etc.) + credential dirs
`check-command-allowlist.sh`	Hard-block destructive (`rm -rf /`, `mkfs`, fork bombs); warn on risky (`git push --force`, `DROP TABLE`)
`check-secret-patterns.sh`	High-confidence credential patterns (AWS, GitHub, OpenAI, JWT, private keys)

run-all.sh orchestrates and returns the highest exit code from any linter.

Exit codes (per spec §20.2)

exit_codes[3]{code,meaning,downstream_action}:
  0,pass,"continue silently"
  1,warn,"emit warning, allow"
  2,fail,"BLOCK tool call (PreToolUse hook returns 2 → claude-code rejects the tool)"

Invocation patterns

Auto — hook on PreToolUse fires this for every tool call
Manual — /aura-frog:preflight check runs run-all.sh against current tool context
CI — bash aura-frog/scripts/preflight/run-all.sh --files <files> for batch validation
Contributor — invoke individual scripts directly when authoring a new hook

What this skill does NOT do

Does NOT run OPA Tier 2 (deferred to v3.7.0-rc.1+; OPA is optional per spec §20.4)
Does NOT mutate tool inputs/outputs (read-only)
Does NOT cache results (each call is fresh — fast enough at ~10ms)
Does NOT fall back when bash is unavailable (Linux/macOS required)

Tie-Ins

Spec: §9.7, §20 (pre-flight)
Script: aura-frog/scripts/preflight/run-all.sh — implementation
Hook: hooks/pre-flight-validate.cjs — primary auto-trigger
Command: /aura-frog:preflight — user-facing entry
Rule: rules/workflow/preflight-policies.md — when, what, bypass policy
Future (rc.1): aura-frog/scripts/preflight/install-opa.sh for Tier 2 OPA policies (optional)

More from this repository

same repository

agent-detector

nguyenthienthanh/aura-frog

CRITICAL: MUST run for EVERY message. Detects agent, complexity, AND model automatically. Without this, tasks route to wrong agents and use wrong models, degrading quality and wasting tokens.

2026-06-1022

problem-solving

nguyenthienthanh/aura-frog

5 techniques for different problem types. Use when stuck or facing complex challenges.

2026-06-1022

sequential-thinking

nguyenthienthanh/aura-frog

Structured thinking process for complex analysis. Supports revision, branching, and dynamic adjustment.

2026-06-1022

angular-expert

nguyenthienthanh/aura-frog

Angular 17+ gotchas and decision criteria. Covers signals vs observables, standalone patterns, and common pitfalls Claude gets wrong.

2026-05-1522

api-designer

nguyenthienthanh/aura-frog

Designs RESTful APIs with endpoint naming, versioning strategies (URL path, header-based), pagination (offset and cursor), error response schemas, and OpenAPI conventions. Use when the user asks about REST API design, creating endpoints, URL structure, API versioning, status codes, Swagger, or OpenAPI specs.

2026-05-1522

bugfix-quick

nguyenthienthanh/aura-frog

Fast bug fixes with root cause investigation + TDD. Enforces 'no fix without root cause' discipline and verification protocol. Without this skill, fixes are applied at symptoms instead of sources, and bugs return.

2026-05-1522

name	preflight-validator
description	On-demand wrapper over scripts/preflight/run-all.sh. Runs Tier 1 bash linters against a file, command, or arbitrary content. Returns 0 pass / 1 warn / 2 fail. Used by /aura-frog:preflight check and contributors authoring custom hooks.
when_to_use	Before committing a markdown file, before piping risky shell content, when CI fails on pre-flight
allowed-tools	Bash
effort	low
user-invocable	false

AI-consumed reference. Optimized for Claude to read during execution. Human-readable explanation: see docs/architecture/HIERARCHICAL_PLANNING.md or docs/getting-started/ depending on topic.

Pre-flight Validator

STATUS — v3.7.0-beta.1. Thin wrapper over aura-frog/scripts/preflight/run-all.sh.

When this skill runs vs. when the hook runs

hooks/pre-flight-validate.cjs — auto-fires on every PreToolUse for Bash/Edit/Write/Read. Blocks tool call on fail. You don't have to do anything for this — it's automatic.
This skill — explicit invocation when you want to validate something the hook doesn't see. Examples: validating a markdown file before committing, dry-running a Bash command's safety, batching a directory of plan files through frontmatter validation.

Behavior

Resolve target: file path / Bash command string / stdin content
Run bash aura-frog/scripts/preflight/run-all.sh with the appropriate flags
Surface exit code + stderr to caller

Tier 1 linters (per spec §20.2)

Script	Checks
`validate-frontmatter.sh`	YAML frontmatter on plan/skill/agent/rule/command markdown
`validate-tool-input.sh`	Tool input shape — required fields, absolute paths, no-op edits
`validate-tool-output.sh`	ANSI-escape volume, prompt-injection phrases, JSON-claim sanity
`check-path-safety.sh`	Reject path traversals + system files (`/etc/passwd` etc.) + credential dirs
`check-command-allowlist.sh`	Hard-block destructive (`rm -rf /`, `mkfs`, fork bombs); warn on risky (`git push --force`, `DROP TABLE`)
`check-secret-patterns.sh`	High-confidence credential patterns (AWS, GitHub, OpenAI, JWT, private keys)

run-all.sh orchestrates and returns the highest exit code from any linter.

Exit codes (per spec §20.2)

exit_codes[3]{code,meaning,downstream_action}:
  0,pass,"continue silently"
  1,warn,"emit warning, allow"
  2,fail,"BLOCK tool call (PreToolUse hook returns 2 → claude-code rejects the tool)"

Invocation patterns

Auto — hook on PreToolUse fires this for every tool call
Manual — /aura-frog:preflight check runs run-all.sh against current tool context
CI — bash aura-frog/scripts/preflight/run-all.sh --files <files> for batch validation
Contributor — invoke individual scripts directly when authoring a new hook

What this skill does NOT do

Does NOT run OPA Tier 2 (deferred to v3.7.0-rc.1+; OPA is optional per spec §20.4)
Does NOT mutate tool inputs/outputs (read-only)
Does NOT cache results (each call is fresh — fast enough at ~10ms)
Does NOT fall back when bash is unavailable (Linux/macOS required)

Tie-Ins

Spec: §9.7, §20 (pre-flight)
Script: aura-frog/scripts/preflight/run-all.sh — implementation
Hook: hooks/pre-flight-validate.cjs — primary auto-trigger
Command: /aura-frog:preflight — user-facing entry
Rule: rules/workflow/preflight-policies.md — when, what, bypass policy
Future (rc.1): aura-frog/scripts/preflight/install-opa.sh for Tier 2 OPA policies (optional)