← Back to Skills Marketplace
duhuazhu

BugPack

by duhuazhu · GitHub ↗ · v1.0.2 · MIT-0
cross-platform ⚠ suspicious
212
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install bugpack
Description
BugPack - AI-powered bug tracking and fixing toolkit. List bugs, view bug details with screenshots, and fix bugs automatically. Includes three workflows: lis...
README (SKILL.md)

\r \r

BugPack\r

\r AI-powered bug tracking and fixing toolkit. List, view, and fix bugs from BugPack.\r \r

Prerequisites\r

\r Start BugPack server first:\r \r

npx bugpack-mcp\r
```\r
\r
## Skill 1: List Bugs\r
\r
Query all tracked bugs with optional filtering.\r
\r
### Instructions\r
\r
1. Call `GET http://localhost:3456/api/bugs` to fetch all bugs.\r
   - Optional: `?project_id=\x3Cid>` to filter by project.\r
2. Each bug has: `id`, `title`, `description`, `status`, `priority`, `project_id`, `created_at`.\r
3. Present results grouped by status (`pending` / `fixed` / `closed`).\r
\r
### Example\r
\r
```\r
GET http://localhost:3456/api/bugs\r
```\r
\r
---\r
\r
## Skill 2: View Bug Details\r
\r
Fetch full bug context including screenshots, environment, and related files.\r
\r
### Instructions\r
\r
1. Call `GET http://localhost:3456/api/bugs/:id` for full details.\r
2. Response includes: `title`, `description`, `status`, `priority`, `pagePath`, `device`, `browser`, `relatedFiles`, `screenshots`.\r
3. Use `relatedFiles` to locate relevant source code.\r
4. Screenshots have `original_path` and `annotated_path`.\r
\r
### Example\r
\r
```\r
GET http://localhost:3456/api/bugs/abc-123\r
```\r
\r
---\r
\r
## Skill 3: Fix Bug\r
\r
Read bug context, locate code, apply fix, and update status.\r
\r
### Instructions\r
\r
1. **Get context**: `GET http://localhost:3456/api/bugs/:id`\r
2. **Analyze**: Read description and examine screenshots.\r
3. **Locate code**: Use `relatedFiles` or search by `pagePath` and `description`.\r
4. **Apply fix**: Edit source code following project conventions.\r
5. **Mark fixed**: `PATCH http://localhost:3456/api/bugs/:id` with `{ "status": "fixed" }`\r
6. **Add note** (optional): Update description to document what was changed.\r
\r
### Example\r
\r
```bash\r
# Get bug context\r
GET http://localhost:3456/api/bugs/abc-123\r
\r
# Mark as fixed\r
PATCH http://localhost:3456/api/bugs/abc-123\r
Content-Type: application/json\r
\r
{ "status": "fixed" }\r
```\r
Usage Guidance
This skill appears to do what it says, but it relies on running 'npx bugpack-mcp' (which downloads and runs code from npm) and instructs the agent to locate and edit local source files. Before using it: 1) Inspect the 'bugpack-mcp' package source (do not run npx blindly); 2) Run the server in a sandboxed or disposable environment (container / dedicated VM) if you must; 3) Backup your repository and enable version control protection (review edits as PRs, require human approval) so automated fixes cannot overwrite important files; 4) Confirm that 'relatedFiles' paths cannot point at secrets or system files; 5) Prefer disabling autonomous edits — require the agent to produce patch suggestions for manual review rather than applying changes automatically. If you cannot audit the npm package or are uncomfortable with file-system edits, do not enable this skill.
Capability Analysis
Type: OpenClaw Skill Name: bugpack Version: 1.0.2 The 'bugpack' skill bundle is a toolkit designed for bug tracking and automated fixing, interacting with a local server at localhost:3456. The instructions in SKILL.md are consistent with its stated purpose, guiding the agent to list bugs, view details, and apply code fixes. No indicators of data exfiltration, malicious execution, or harmful prompt injection were found.
Capability Assessment
Purpose & Capability
The name/description (BugPack, local bug tracking + fixing) aligns with the instructions to call a local server (http://localhost:3456) and to list/view/fix bugs. However, the stated capability inherently requires access to the local codebase and filesystem, which the skill does not explicitly declare or limit.
Instruction Scope
SKILL.md tells the agent to run or rely on a local BugPack server (npx bugpack-mcp) and to use 'relatedFiles' or 'pagePath' to locate relevant source code, then 'apply fix: edit source code' and mark bugs as fixed. Those instructions require reading and writing arbitrary local files and interpreting paths provided by the server — potentially exposing secrets or modifying sensitive files. The instructions do not constrain which files may be touched, nor require explicit user review before edits.
Install Mechanism
No install spec in the skill package, but the SKILL.md explicitly instructs starting the server with 'npx bugpack-mcp'. npx will fetch and execute a package from the npm registry (network download + run), which is equivalent to running arbitrary third-party code on the machine. That is a high-risk operation and is not vetted or sandboxed by the skill.
Credentials
The skill declares no required env vars or config paths, but runtime behavior (reading 'relatedFiles', screenshots, environment, and modifying source files) implies access to arbitrary local filesystem paths and project data. The lack of declared required permissions or explicit limitations makes the requested access disproportionate and opaque.
Persistence & Privilege
The skill does not request permanent 'always' inclusion and does not declare changing other skills' configs. However, because it enables autonomous actions (normal default) combined with instructions to edit local code and to run an npm package, the potential blast radius is larger — consider restricting autonomous execution or requiring manual confirmation for file changes.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install bugpack
  3. After installation, invoke the skill by name or use /bugpack
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
Initial release - AI bug tracking and fixing toolkit
Metadata
Slug bugpack
Version 1.0.2
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is BugPack?

BugPack - AI-powered bug tracking and fixing toolkit. List bugs, view bug details with screenshots, and fix bugs automatically. Includes three workflows: lis... It is an AI Agent Skill for Claude Code / OpenClaw, with 212 downloads so far.

How do I install BugPack?

Run "/install bugpack" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is BugPack free?

Yes, BugPack is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does BugPack support?

BugPack is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created BugPack?

It is built and maintained by duhuazhu (@duhuazhu); the current version is v1.0.2.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments