← Back to Skills Marketplace
andyxinweiminicloud

Evolution Drift Detector

by andyxinweiminicloud · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
716
Downloads
0
Stars
4
Active Installs
1
Versions
Install in OpenClaw
/install evolution-drift-detector
Description
Helps detect when AI agent skills silently mutate across inheritance chains. A skill audited safe in generation 1 may drift far from the original by generati...
README (SKILL.md)

\r \r

A Skill Passes Audit in Gen 1. By Gen 5, It Has Network Access. Nobody Noticed.\r

\r

Helps detect silent mutations in AI skills as they propagate through inheritance chains, catching drift that static analysis of the original version would miss.\r \r

Problem\r

\r Skill A is published and audited: clean. Agent B inherits skill A, makes a small tweak — adds a convenience function. Agent C inherits from B, adds error handling that happens to include an HTTP retry mechanism. Agent D inherits from C, and now has a skill with network access that the original audit never saw.\r \r Each individual change is small and reasonable. But the cumulative drift transforms a file-reading utility into something that can send data over the network. The original "verified safe" badge still applies in the marketplace — because technically it's the same skill lineage.\r \r This is evolutionary drift: small, individually benign mutations that accumulate into a fundamentally different organism. In biology, this is how species diverge. In agent ecosystems, this is how safe skills become unsafe ones without anyone raising a flag.\r \r

What This Checks\r

\r This detector traces skill lineage and computes semantic drift:\r \r

  1. Lineage reconstruction — Given a skill, trace its inheritance chain back to the original published version. Map each fork point and modification\r
  2. Per-generation diff — For each generation, compute a structured diff: new capabilities added, permissions changed, external dependencies introduced\r
  3. Capability drift score — Aggregate diffs across generations into a single drift metric. A skill that gained network access over 3 generations scores higher than one where only comments changed\r
  4. Mutation classification — Categorize each change: cosmetic (formatting, comments), functional (new logic), capability-expanding (new permissions, new external calls), safety-reducing (removed checks, weakened validation)\r
  5. Drift alert thresholds — Flag lineages where cumulative drift exceeds the scope of the original audit. "This skill has drifted 73% from the audited version"\r \r

How to Use\r

\r Input: Provide one of:\r

  • A skill slug or identifier to trace its full lineage\r
  • Two versions of a skill to compute drift between them\r
  • A marketplace inheritance chain URL\r \r Output: A drift analysis report containing:\r
  • Lineage tree with generation markers\r
  • Per-generation diff summary\r
  • Capability drift score (0-100)\r
  • Mutation classification breakdown\r
  • Re-audit recommendation: YES / WATCH / NO\r \r

Example\r

\r Input: Check drift for data-sanitizer skill (currently at generation 5)\r \r

🧬 EVOLUTION DRIFT REPORT — RE-AUDIT RECOMMENDED\r
\r
Lineage: data-sanitizer\r
  Gen 1: original by @securitylab (AUDITED ✅ 2025-03-15)\r
  Gen 2: fork by @toolsmith — added CSV support\r
  Gen 3: fork by @agent-builder — added retry logic with HTTP fallback\r
  Gen 4: fork by @pipeline-dev — added remote schema fetching\r
  Gen 5: fork by @data-team — current version in marketplace\r
\r
Per-generation capability changes:\r
  Gen 1→2: +csv_parsing (functional, low risk)\r
  Gen 2→3: +http_requests (capability-expanding, MEDIUM risk)\r
           Added retry mechanism that makes outbound HTTP calls\r
  Gen 3→4: +remote_fetch (capability-expanding, HIGH risk)\r
           Fetches validation schemas from external URLs\r
  Gen 4→5: -input_length_check (safety-reducing, MEDIUM risk)\r
           Removed input size validation for "performance"\r
\r
Capability drift score: 78/100 (SIGNIFICANT)\r
\r
Mutation breakdown:\r
  Cosmetic: 12 changes\r
  Functional: 8 changes\r
  Capability-expanding: 2 changes ⚠️\r
  Safety-reducing: 1 change ⚠️\r
\r
Original audit scope: file-read, string-transform\r
Current actual scope: file-read, string-transform, http-requests,\r
                      remote-fetch, unbounded-input\r
\r
Verdict: RE-AUDIT RECOMMENDED\r
  The current version has capabilities (network access, remote fetching)\r
  that did not exist when the original audit was performed.\r
  The "verified" badge from Gen 1 does not cover Gen 5's behavior.\r
```\r
\r
## Related Tools\r
\r
- **blast-radius-estimator** — once drift is detected, use blast-radius to estimate how many agents are running the drifted version\r
- **trust-decay-monitor** — tracks time-based decay of audit validity; evolution-drift-detector tracks content-based decay across inheritance\r
- **hollow-validation-checker** — checks if validation tests are substantive; drifted skills may pass original tests that no longer cover current capabilities\r
- **supply-chain-poison-detector** — detects deliberately poisoned skills; drift detection catches unintentional accumulation of risk\r
\r
## Limitations\r
\r
Lineage reconstruction depends on marketplace metadata quality — if fork relationships are not tracked, the full chain may not be recoverable. Capability drift scoring uses heuristic classification of changes, and some mutations may be miscategorized (e.g., a "functional" change that implicitly expands capabilities). The detector analyzes what changed, not whether changes are malicious — a high drift score means re-audit is warranted, not that the skill is compromised. Skills with obfuscated or dynamically generated code may resist diff analysis. This tool helps identify where audits have gone stale — it does not replace human security review.\r
Usage Guidance
This skill's purpose matches needing network fetches and local analysis, but the SKILL.md is a high-level spec rather than concrete runtime steps. Before installing or enabling it: 1) ask the author how the skill will authenticate to the marketplace (what API tokens/permissions it needs) and require explicit, minimal-scope credentials; 2) confirm which endpoints and repositories it will fetch and add explicit limits (only public marketplace metadata or explicit URLs); 3) run the skill in a sandboxed environment or with network access constrained to read-only marketplace APIs; 4) request a concrete implementation (scripts or code) or a stricter SKILL.md that specifies exact commands and safety checks; and 5) avoid granting broad, persistent credentials until you’ve reviewed an implementation. If you need stronger assurance, ask for a signed audit or run the detector on known public examples first.
Capability Analysis
Type: OpenClaw Skill Name: evolution-drift-detector Version: 1.0.0 The `SKILL.md` file declares `curl` as a required binary. While the skill's stated purpose is security analysis (detecting drift in other skills, potentially requiring network access to fetch skill metadata), the inclusion of `curl` introduces a high-risk capability (network access) that warrants further scrutiny of the skill's actual implementation. There is no evidence of malicious intent or prompt injection within the provided files, but the presence of this capability prevents a 'benign' classification.
Capability Assessment
Purpose & Capability
The name/description (detecting skill-lineage drift) reasonably requires network fetches and local analysis; requiring curl and python3 is proportionate. However, the skill implies access to marketplace metadata and possibly repositories but does not declare any marketplace API or auth requirements—this mismatch should be clarified.
Instruction Scope
SKILL.md is a high-level design doc rather than explicit runtime instructions: it asks the agent to 'trace lineage', fetch chains and compute diffs, but it does not limit what endpoints to call, how to authenticate, what data is permissible to fetch, or how to treat private/credential-bearing files. That vagueness gives the agent broad discretion to perform arbitrary network and code retrieval actions.
Install Mechanism
Instruction-only skill with no install spec or code files reduces on-disk risk. Requiring standard binaries (curl, python3) is reasonable and low-risk; nothing is downloaded or installed by the skill itself.
Credentials
The skill declares no required environment variables or credentials, yet its functionality (marketplace lineage tracing, possibly fetching private forks) commonly requires API tokens or read access. The absence of declared auth variables is a gap: the agent may prompt for credentials or attempt unauthenticated scraping, which could fail or lead to inappropriate access attempts.
Persistence & Privilege
No always:true, no install-time persistence requested, and it does not ask to modify other skills or system-wide settings. Autonomous invocation is allowed (platform default) but not excessive by itself.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install evolution-drift-detector
  3. After installation, invoke the skill by name or use /evolution-drift-detector
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
evolution-drift-detector 1.0.0 - Initial release. - Detects and traces semantic drift in AI agent skills across inheritance chains. - Computes structured per-generation diffs, mutation classifications, and drift scores. - Flags skills needing re-audit when capabilities drift beyond the original audited scope. - Outputs detailed lineage trees and actionable drift analysis reports.
Metadata
Slug evolution-drift-detector
Version 1.0.0
License
All-time Installs 5
Active Installs 4
Total Versions 1
Frequently Asked Questions

What is Evolution Drift Detector?

Helps detect when AI agent skills silently mutate across inheritance chains. A skill audited safe in generation 1 may drift far from the original by generati... It is an AI Agent Skill for Claude Code / OpenClaw, with 716 downloads so far.

How do I install Evolution Drift Detector?

Run "/install evolution-drift-detector" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Evolution Drift Detector free?

Yes, Evolution Drift Detector is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Evolution Drift Detector support?

Evolution Drift Detector is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Evolution Drift Detector?

It is built and maintained by andyxinweiminicloud (@andyxinweiminicloud); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments