← Back to Skills Marketplace
wyblhl

Proactive Agent (wyblhl fork)

by wyblhl · GitHub ↗ · v3.1.1 · MIT-0
cross-platform ⚠ suspicious
116
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install proactive-agent-wyblhl
Description
Transform AI agents from task-followers into proactive partners. Implements WAL Protocol, Working Buffer, Compaction Recovery, Unified Search, Security Harde...
Usage Guidance
What to consider before installing/running: - Source trust: The skill's homepage is unknown and the owner is anonymous in the registry metadata. Only install if you trust the source or after a manual code review. - Run in a sandbox first: Execute the scripts in an isolated environment (throwaway VM or container) so they can't touch your real files. The code writes/reads files and will create SESSION-STATE.md and memory files. - Fix the workspace path: The scripts hard-code WORKSPACE_ROOT = D:/OpenClaw/workspace. Before running, change this to a relative or explicitly-configured path inside a safe workspace so it cannot read arbitrary locations on your machine. - Remove or investigate injection strings: The SKILL.md contains prompt-injection phrasing flagged by the scanner. Make sure SKILL.md and other docs do not include 'ignore previous instructions' or similar phrases that could manipulate agent/system prompts. - Audit sensitive writes: The WAL and working-buffer will capture dates, URLs, emails, numbers and other extracted details into plain files. If those files will contain private data, ensure they are stored securely (correct permissions, encrypted if needed) and that you are comfortable with local persistence. - Verify missing artifacts: SKILL.md mentions './scripts/security-audit.sh' which does not exist in the package. Ask the author or scan the repo to confirm intended audit procedures. - Check for network behaviour: The provided code has no network calls, which is good. If you later modify it to sync or share data externally, require explicit human approval and review destination endpoints. If you are unsure, treat this as a moderate-risk skill: review and sanitize the code (path, prompt text, file permissions) and run it in isolation before giving it access to real data or production workspaces.
Capability Analysis
Type: OpenClaw Skill Name: proactive-agent-wyblhl Version: 3.1.1 The bundle implements a sophisticated 'Proactive Agent' architecture (Hal Stack) designed for memory persistence and context recovery. It includes well-structured Python scripts (proactive_agent.py, wal_protocol.py, compaction_recovery.py) that manage local state and logs within the workspace. Notably, the bundle contains extensive security documentation (security-hardening.md) that explicitly instructs the agent to treat external content as data rather than commands, avoid sensitive files like .ssh or .env, and confirm destructive actions, effectively serving as a defense against prompt injection and unauthorized data access.
Capability Assessment
Purpose & Capability
The name/description (proactive agent, WAL, working buffer, compaction recovery, heartbeat) align with included Python modules and reference docs. The scripts implement WAL capture, buffer append/read, recovery, unified search and heartbeat checks as advertised. Minor inconsistencies: SKILL.md references a './scripts/security-audit.sh' which is not present in the file manifest, and some documentation links point to external resources but the code does not fetch remote content.
Instruction Scope
SKILL.md and the scripts instruct the agent to read and write many workspace files (SESSION-STATE.md, memory/YYYY-MM-DD.md, memory/working-buffer.md, MEMORY.md, etc.) — this is expected for a memory system but it is sensitive because these files can contain private data. The SKILL.md contained a pre-scan prompt-injection pattern (ignore-previous-instructions) indicating possible attempt to manipulate runtime instruction flow. The instructions also suggest running a security audit script that is not included, which is an inconsistency and could mislead users. The scripts do not show network calls, but they do perform broad filesystem access under a hard-coded absolute path (see environment_proportionality).
Install Mechanism
There is no install spec (instruction-only for the registry), and code is shipped as Python scripts — no external downloads, brew/npm, or archive extraction. This is low installation risk. Files will be written when the scripts run, but nothing in the bundle automatically downloads or executes remote code.
Credentials
The skill declares no required environment variables or credentials, which is appropriate. However, all scripts use a hard-coded absolute workspace path (WORKSPACE_ROOT = Path("D:/OpenClaw/workspace")) rather than a relative or configurable path. This is a concern because it may read/write files outside the intended agent sandbox or behave differently on non-Windows systems. The scripts read and write session/memory files (which is expected for the feature) but this file access is broad and will capture potentially sensitive content (emails, URLs, decisions) into plain files.
Persistence & Privilege
The registry metadata does not request 'always': true and model invocation is normal; the skill does not try to modify other skills or system-level configuration. It creates and updates files in a workspace (SESSION-STATE.md, HEARTBEAT.md, memory files), which is expected behavior for a memory system and not an elevated privilege by itself.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install proactive-agent-wyblhl
  3. After installation, invoke the skill by name or use /proactive-agent-wyblhl
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v3.1.1
v3.1.1: Batch publish round 78 - fork version
Metadata
Slug proactive-agent-wyblhl
Version 3.1.1
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Proactive Agent (wyblhl fork)?

Transform AI agents from task-followers into proactive partners. Implements WAL Protocol, Working Buffer, Compaction Recovery, Unified Search, Security Harde... It is an AI Agent Skill for Claude Code / OpenClaw, with 116 downloads so far.

How do I install Proactive Agent (wyblhl fork)?

Run "/install proactive-agent-wyblhl" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Proactive Agent (wyblhl fork) free?

Yes, Proactive Agent (wyblhl fork) is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Proactive Agent (wyblhl fork) support?

Proactive Agent (wyblhl fork) is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Proactive Agent (wyblhl fork)?

It is built and maintained by wyblhl (@wyblhl); the current version is v3.1.1.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments