A focused workflow tool for managing GitHub Security Advisories in the OpenClaw repository. It walks you through fetching advisory state, verifying private fork PRs are closed before publish, and building PATCH payloads with proper Markdown handling using heredocs and jq instead of fragile escaped strings. The guardrails are helpful: separate PATCH calls when you need to set both severity and CVSS, always check for literal escaped newlines after publish, and keep commit hashes and PR numbers out of public advisory text. This is explicitly scoped to GHSA work only, so you won't accidentally mix security patch workflows with regular release tasks.
npx skills add https://github.com/steipete/clawdis --skill openclaw-ghsa-maintainer