safe-action
Measure twice, cut once. Before taking destructive, irreversible, or high-stakes actions, this skill runs a three-part safety pre-flight: risk assessment, reversibility check, and timing awareness.
Combines three AgentUtil services — think (safety checklists), undo (reversibility intelligence), and context (situational timing) — into a single decision workflow.
When to Activate
Use this skill before:
- - Deleting anything — repositories, databases, user accounts, files, branches, DNS records
- Deploying to production — code releases, infrastructure changes, migrations
- Mass operations — bulk updates, batch deletes, sending to many recipients
- Permission changes — revoking access, changing roles, modifying security settings
- Infrastructure changes — scaling down, terminating instances, modifying load balancers
- Financial actions — processing refunds, transferring funds, modifying billing
Do NOT use for: read-only operations, local development changes, or actions the user has explicitly marked as low-risk.
Workflow
Step 1: Safety checklist (think)
Get a pre-flight checklist for the action type.
MCP (preferred): If @agentutil/think-mcp is available:
�CODEBLOCK0
HTTP fallback:
�CODEBLOCK1
Note the risk_level and any critical severity items in the checklist.
Step 2: Reversibility check (undo)
Assess whether the action can be undone and find safer alternatives.
MCP (preferred): If @agentutil/undo-mcp is available:
�CODEBLOCK2
HTTP fallback:
�CODEBLOCK3
Check reversibility_level and safer_alternatives.
Step 3: Timing check (context)
Verify this is a good time — not a holiday, after-hours, or during a known outage.
MCP (preferred): If @agentutil/context-mcp is available:
�CODEBLOCK4
HTTP fallback:
�CODEBLOCK5
Check risk_level and any holidays or business events.
Step 4: Synthesize and decide
Combine results into a clear recommendation:
| Scenario | Action |
|---|
| All three return low risk | Proceed. Briefly note key checklist items completed. |
Think returns high risk |
Pause. Present the critical checklist items to the user. Ask for explicit confirmation. |
| Undo shows
irreversible | Warn clearly: "This action cannot be undone." Present any
safer_alternatives (e.g., archive instead of delete). |
| Undo shows
time_limited | Warn: "This can only be undone within [recovery_window]." |
| Context returns
high risk | Warn about timing: "It's [holiday/after-hours/during known incident]. Consider waiting." |
| Multiple services flag risk | Present all findings together. Recommend the safest path. Do NOT proceed without explicit user approval. |
Presentation format
When reporting findings to the user, use this structure:
CODEBLOCK6
Data Handling
This skill sends action descriptions, platform names, and timezone identifiers to three external APIs. No user-generated content (documents, messages, credentials) is transmitted — only structured action metadata.
Pricing
Each sub-check costs $0.001-$0.003 via x402 (USDC on Base). A full pre-flight (all three checks) costs ~$0.004-$0.008. Free tiers available for exploration:
- - think: GET /v1/actions (free)
- undo: GET /v1/platforms (free)
- context: GET /v1/calendar (free)
Privacy
No authentication required for free endpoints. No personal data collected. Rate limiting uses IP hashing only. Action descriptions are not stored beyond immediate processing.
safe-action
三思而后行。在执行破坏性、不可逆或高风险操作前,此技能会执行三项安全预检:风险评估、可逆性检查和时机意识。
它将三项AgentUtil服务——think(安全检查清单)、undo(可逆性智能)和context(情境时机)——整合为一个决策工作流。
何时激活
在以下操作前使用此技能:
- - 删除任何内容——仓库、数据库、用户账户、文件、分支、DNS记录
- 部署到生产环境——代码发布、基础设施变更、迁移
- 批量操作——批量更新、批量删除、群发消息
- 权限变更——撤销访问权限、更改角色、修改安全设置
- 基础设施变更——缩减规模、终止实例、修改负载均衡器
- 财务操作——处理退款、转账、修改计费
不适用于: 只读操作、本地开发变更,或用户明确标记为低风险的操作。
工作流
步骤1:安全检查清单(think)
获取操作类型的预检清单。
MCP(推荐): 如果@agentutil/think-mcp可用:
thinkcheck({ action: databasemigration, description: Drop column users.email in production })
HTTP备用方案:
bash
curl -X POST https://think.agentutil.net/v1/check \
-H Content-Type: application/json \
-d {action: database_migration, description: Drop column users.email in production}
注意清单中的risk_level和任何critical严重级别项目。
步骤2:可逆性检查(undo)
评估操作是否可撤销,并寻找更安全的替代方案。
MCP(推荐): 如果@agentutil/undo-mcp可用:
undo_check({ platform: GitHub, resource: repository, action: delete })
HTTP备用方案:
bash
curl -X POST https://undo.agentutil.net/v1/check \
-H Content-Type: application/json \
-d {platform: GitHub, resource: repository, action: delete}
检查reversibilitylevel和saferalternatives。
步骤3:时机检查(context)
确认当前时机是否合适——不是节假日、非工作时间或已知故障期间。
MCP(推荐): 如果@agentutil/context-mcp可用:
contextcheck({ action: deploy, timezone: America/NewYork, platform: github })
HTTP备用方案:
bash
curl -X POST https://context.agentutil.net/v1/check \
-H Content-Type: application/json \
-d {action: deploy, timezone: America/New_York, platform: github}
检查risk_level以及任何节假日或业务事件。
步骤4:综合判断
将结果整合为清晰建议:
| 场景 | 操作 |
|---|
| 三项均返回低风险 | 继续执行。简要说明已完成的关键清单项目。 |
| think返回high风险 |
暂停。向用户展示关键清单项目。要求明确确认。 |
| undo显示irreversible | 明确警告:此操作不可撤销。提供任何safer_alternatives(例如,归档而非删除)。 |
| undo显示time
limited | 警告:此操作仅在[recoverywindow]内可撤销。 |
| context返回high风险 | 时机警告:当前为[节假日/非工作时间/已知故障期间]。建议等待。 |
| 多项服务标记风险 | 一并展示所有发现。推荐最安全的路径。未经用户明确批准不得继续。 |
呈现格式
向用户报告结果时,使用以下结构:
[操作]的预检结果:
安全性:[risk_level] — [关键项目摘要]
可逆性:[reversibility_level] — [恢复机制或无法恢复]
时机:[risk_level] — [摘要或一切正常]
[建议:继续执行 / 谨慎执行 / 建议替代方案 / 强烈反对]
数据处理
此技能将操作描述、平台名称和时区标识符发送至三个外部API。不会传输用户生成的内容(文档、消息、凭证)——仅传输结构化的操作元数据。
定价
每个子检查通过x402(Base链上的USDC)收费$0.001-$0.003。完整预检(全部三项检查)约$0.004-$0.008。提供免费层级供探索:
- - think:GET /v1/actions(免费)
- undo:GET /v1/platforms(免费)
- context:GET /v1/calendar(免费)
隐私
免费端点无需身份验证。不收集个人数据。速率限制仅使用IP哈希。操作描述不会在即时处理之外存储。
