Knock

Bypass access friction through legitimate unlock paths: key rotation, permission requests, and recovery workflows.

What This Skill Does

Knock is specifically about restoring legitimate access through authorized channels. It is NOT about: - Performance optimization (slow queries, throughput issues) → different spell

• Removing safety controls (approval gates, compliance checks) → different spell
• Simple bug fixes (typos, wrong ports) → different spell
• Breaking constraints (resource limits, CPU throttling) → different spell
• Security analysis (encryption schemes, certificate inspection) → different spell In this grimoire, Knock is treated as a literal spell with a prototype delivery profile. Canonical reference input: Knock (spell).

When To Use

• Activate this spell when the user's request contains an access barrier with a legitimate recovery path. Look for these patterns:
• Expired/rotated credentials: "credentials expired", "token revoked", "certificate expired", "password rotated", "key expired"
• Locked resources: "lockfile", "state is locked", "DynamoDB lock", "stale lock"
• Permission gaps: "locked out", "permissions removed", "RBAC", "403", "unauthorized", "access denied"
• Blocked processes: "stuck behind", "can't authenticate", "connection rejected", "sealed" (Vault)
• Recovery language: "rotate", "renew", "unseal", "reinstate", "force-unlock", "exception request", "proper channel"
• The core signal: something is blocking access, and there exists an authorized way to restore it.