← Back to Skills Marketplace

小花自我迭代 (HuaNiu Enhanced)

Name: 小花自我迭代 (HuaNiu Enhanced)
Author: aroooooy

by Aroooooy · GitHub ↗ · v1.0.0

cross-platform ⚠ suspicious

407

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install xiaohua-self-improving

Description

小花专用自我迭代技能 - 基于 self-improving-agent 增强，集成 OpenClaw 工作流、MEMORY.md、百度千帆、看想做找四部曲。专为国内部署优化。

Usage Guidance

This skill appears internally consistent and implements short, opt‑in reminders and error-detection hooks for an OpenClaw workspace. Before enabling it: 1) review the hook scripts (hooks/openclaw/handler.{js,ts}, scripts/*.sh) to confirm you accept their behavior; they will run with the same user permissions as the agent. 2) If you enable hooks globally (~/.claude or ~/.openclaw settings), prefer a sandbox workspace first to verify outputs. 3) Note extract-skill.sh writes to a relative ./skills directory but validates paths to avoid absolute or '..' writes — still confirm the target directory. 4) The skill references cross-session APIs in docs; those are powerful — only enable inter-session features if you trust the environment. 5) There are no credentials requested by this skill; services like Baidu/OLLAMA are mentioned as optional integrations and would require separate configuration. If you want higher assurance, run the scripts in a controlled environment (non-production user) before enabling them in your main workspace.

Capability Analysis

Type: OpenClaw Skill Name: xiaohua-self-improving Version: 1.0.0 The skill is designed for agent self-improvement, including logging, knowledge promotion, and operational fixes. It is classified as 'suspicious' due to powerful self-management instructions in `SKILL.md` that direct the AI agent to modify `openclaw.json` and execute system commands like `Stop-Process` and `openclaw gateway` to restart the gateway. While framed as a legitimate 'fix' for context window issues, these capabilities present a significant attack surface for prompt injection, potentially leading to unauthorized configuration changes or denial of service if an attacker could manipulate the agent's interpretation of these instructions. The `scripts/extract-skill.sh` script, while creating new files, includes robust path validation to prevent path traversal.

Capability Assessment

✓ Purpose & Capability

Name/description match the included files and instructions: the SKILL.md, hooks, and scripts implement reminders, error detection, and a helper to extract learnings into new skills. References to China-friendly tooling (Baidu, Ollama) are documented as integration options rather than required credentials. There is a minor metadata mismatch (package _meta.json says 'self-improving-agent' v2.0.0 while registry entry is 'xiaohua-self-improving' v1.0.0) but this looks like a fork/branding difference rather than malicious behavior.

ℹ Instruction Scope

Runtime instructions and hooks operate on workspace files (MEMORY.md, .learnings/, WORKFLOW_AUTO.md) and inject short reminders during bootstrap or after tool use. The error-detector reads the CLAUDE_TOOL_OUTPUT environment variable (expected for a PostToolUse hook). The docs mention OpenClaw session APIs (sessions_history, sessions_send, sessions_spawn) as available capabilities — these are examples and not used by the provided hook code, but they are powerful (can read/send cross-session data) and worth noting before enabling cross-session features.

✓ Install Mechanism

No downloader or package install is declared (instruction-only with bundled scripts and hooks). All included scripts are plain shell/JS/TS files; there are no remote fetches, URL shorteners, or archive extraction behaviors in the manifest. This is a low-risk install model assuming you review and opt-in to enable hooks.

✓ Credentials

The skill declares no required environment variables or credentials. Scripts use CLAUDE_TOOL_OUTPUT (a runtime tool-output variable) which is expected for an error-detection hook. There are no requests for AWS/GitHub/other unrelated keys or secrets in the files.

✓ Persistence & Privilege

always:false and user-invocable:true (default). Hooks/scripts are opt‑in: enabling them requires explicit user config (openclaw hooks enable or adding entries to settings files). The scripts run with the same permissions as the user/agent process — standard for hooks — and they do not modify other skills' configurations.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install xiaohua-self-improving
After installation, invoke the skill by name or use /xiaohua-self-improving
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

v1.0.0 - 小花定制版：基于 self-improving-agent fork，添加 OpenClaw 原生集成、MEMORY.md 提升工作流、百度千帆配置、看想做找自动化、生产环境实战模式、国内部署优化

Metadata

Slug xiaohua-self-improving

Version 1.0.0

License —

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is 小花自我迭代 (HuaNiu Enhanced)?

小花专用自我迭代技能 - 基于 self-improving-agent 增强，集成 OpenClaw 工作流、MEMORY.md、百度千帆、看想做找四部曲。专为国内部署优化。 It is an AI Agent Skill for Claude Code / OpenClaw, with 407 downloads so far.

How do I install 小花自我迭代 (HuaNiu Enhanced)?

Run "/install xiaohua-self-improving" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is 小花自我迭代 (HuaNiu Enhanced) free?

Yes, 小花自我迭代 (HuaNiu Enhanced) is completely free (open-source). You can download, install and use it at no cost.

Which platforms does 小花自我迭代 (HuaNiu Enhanced) support?

小花自我迭代 (HuaNiu Enhanced) is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created 小花自我迭代 (HuaNiu Enhanced)?

It is built and maintained by Aroooooy (@aroooooy); the current version is v1.0.0.

More Skills