一键导入
check-rico-ai
Read-only audit of Rico Hunt AI provider routing. Verify RICO_AI_PROVIDER env var, fallback chain, and provider health without calling live AI APIs.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Read-only audit of Rico Hunt AI provider routing. Verify RICO_AI_PROVIDER env var, fallback chain, and provider health without calling live AI APIs.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
| name | check-rico-ai |
| description | Read-only audit of Rico Hunt AI provider routing. Verify RICO_AI_PROVIDER env var, fallback chain, and provider health without calling live AI APIs. |
| triggers | ["user","model"] |
| allowed-tools | ["read","grep","exec"] |
Read-only audit of Rico Hunt AI provider routing. This skill never calls live OpenAI, DeepSeek, HuggingFace, or JSearch APIs. It only inspects code and environment variables.
RICO_AI_PROVIDER is set to a supported provider (openai, deepseek, huggingface, or keyword fallback).CLAUDE.md:
deepseek → HuggingFace → keyword/templated fallbackopenai → fallbacksrc/rico_openai_agent.py routing logic reflects the provider chain.src/rico_env.py health report fields (*_key_present, ready_for_*, hf_available) are computed at runtime, not static env vars.# Show active provider and keys (values hidden)
echo "RICO_AI_PROVIDER=$RICO_AI_PROVIDER"
echo "OPENAI_API_KEY set: $([ -n "$OPENAI_API_KEY" ] && echo yes || echo no)"
echo "DEEPSEEK_API_KEY set: $([ -n "$DEEPSEEK_API_KEY" ] && echo yes || echo no)"
echo "HF_TOKEN set: $([ -n "$HF_TOKEN" ] && echo yes || echo no)"
# Inspect routing and health code
grep -n "RICO_AI_PROVIDER\|provider\|ready_for_\|hf_available" src/rico_openai_agent.py src/rico_env.py
src/rico_openai_agent.py — provider routing logicsrc/rico_env.py — health report dataclass and runtime checksCLAUDE.md — AI Provider Routing section (source of truth)openai.chat.completions.create, DeepSeek, or HuggingFace endpoints.RICO_AI_PROVIDER to a different provider without approval.Accessibility audit for Rico Hunt. Run contrast checks and review alt text, focus states, ARIA labels, and keyboard navigation in frontend code.
Verify Rico Hunt authentication rules. Check JWT cookie usage, signup role enforcement, protected route isolation, and no request body user_id.
Verify Rico Hunt chat flow. Inspect public chat session isolation, rate limits, authenticated chat routing, and public session prefixing.
Read-only database health check for Rico Hunt. Verify DATABASE_URL connectivity, key tables, and row counts without exposing user data or mutating anything.
Verify Rico Hunt required environment variables are set without exposing values. Check backend, frontend, and admin/dev env vars.
Read-only verification of Rico Hunt job fetching and scoring. Inspect JSearch adapter, provider fallback, and scoring pipeline without calling live APIs.