Summary
Catches the security nightmare where a WordPress ability claims to be readonly but actually writes to the database. Runs in two modes: static analysis from source that scans callback bodies for write patterns, or runtime mode that spins up an environment and executes abilities against live WordPress. You'd use this before merging ability registrations or as a health check after refactors. Also validates audit documents from wp-abilities-audit, checks permission gates, and lints schemas. The adversarial annotation correctness check is the centerpiece here, because agents plan actions based on introspected annotations, so a lying readonly flag breaks both security and UX assumptions. Runtime mode adds idempotency verification via twin invocation heuristics.
Install to Claude Code
npx -y skills add wordpress/agent-skills --skill wp-abilities-verify --agent claude-codeInstalls into .claude/skills of the current project.
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Files
SKILL.md
Select a file.
Featured
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
