← Back to Skills Marketplace
1885
Downloads
4
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install three-minds
Description
三个能干活的 AI 分身协作系统。用 Claude Code 启动三个不同人设的 coding agent,共享同一个工作目录,多轮协作直到达成共识。适用于代码审查、方案评审、重构任务等需要多视角协作的场景。
Usage Guidance
This skill does what it says (runs three Claude-based agents that can read/modify files), but you should be cautious before running it on sensitive systems: 1) It spawns the 'claude' CLI with the full host environment, which can expose any environment secrets to the child process — do not run it where API keys or cloud credentials are present. 2) It uses a flag to skip permission confirmations, letting agents act automatically; run first in a sandboxed environment (container or disposable VM) and on a git branch. 3) Inspect and, if needed, remove or modify the '--dangerously-skip-permissions' usage and avoid passing process.env wholesale to the child process. 4) Verify the 'claude' CLI you have installed is from a trusted source. 5) If you must use it on real projects, restrict the working directory to a copy of the repo and ensure no secrets are present in files or env. If you want, I can point out the exact lines to change to avoid env forwarding and the skip-permissions flag.
Capability Analysis
Type: OpenClaw Skill
Name: three-minds
Version: 0.1.0
This skill is classified as suspicious due to its inherent high-risk capabilities and the broad permissions granted to sub-agents. The `SKILL.md` and `README.md` explicitly state that agents will "read files, write code, and run tests," and "actually modify files." The `src/council.ts` implementation invokes the `claude` CLI with the `--dangerously-skip-permissions` flag, which grants the sub-agents (Claude instances) broad, unconfirmed access to the file system, network, and shell execution. Additionally, user-defined `persona` strings (from `configs/*.json` or custom `--config` files) are directly incorporated into the sub-agents' system prompts, creating a significant prompt injection surface that, combined with the broad permissions, could lead to unintended or malicious actions by the sub-agents.
Capability Assessment
Purpose & Capability
The name/description promise (three collaborating agents that read/modify files and run tests via Claude Code CLI) matches the included code, configs, and SKILL.md. The skill requires the 'claude' CLI (documented) and operates on a project directory as described.
Instruction Scope
Instructions and code legitimately direct agents to read, modify, and execute within the project directory (expected). However, the runtime uses '--dangerously-skip-permissions' when invoking the Claude CLI and constructs system prompts that fully control child agents. That combination removes interactive permission checks and gives child agents automated ability to run tools and modify files — widening the action scope beyond a cautious/confirming workflow.
Install Mechanism
No external download/install spec is present (instruction-only at registry level). The repository contains a normal package.json with common npm deps (commander, chalk, uuid) and TypeScript sources. There are no remote URL downloads or archive extracts in the codebase.
Credentials
Although the skill declares no required environment variables, runClaude spawns the 'claude' process with env: { ...process.env }, passing the entire host environment to the child. This can leak any secrets present in the environment (API keys, cloud credentials, tokens) to the Claude process and any tools it calls — disproportionate to the declared requirements.
Persistence & Privilege
The skill does not request always:true nor modify other skills or global agent settings. However, it enables fully automated agent actions (no permission prompts) and writes transcripts/modified files into the specified projectDir. Combined with env forwarding and autonomous invocation, this increases the blast radius if the Claude process or its tool integrations are compromised or misused.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install three-minds - After installation, invoke the skill by name or use
/three-minds - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Three-minds 2.0.0 introduces a robust multi-agent coding collaboration framework.
- Leverages Claude Code to run three distinct coding agents with different personas on the same project directory
- Enables multi-round collaboration and review cycles until all agents reach consensus
- Adds built-in configurations for architecture, engineering, security, performance, and quality review roles
- Supports custom agent configuration, adjustable rounds, and multiple output formats (Markdown/JSON)
- Provides detailed usage examples and workflow documentation for code review, refactoring, and documentation tasks
Metadata
Frequently Asked Questions
What is Three Minds?
三个能干活的 AI 分身协作系统。用 Claude Code 启动三个不同人设的 coding agent,共享同一个工作目录,多轮协作直到达成共识。适用于代码审查、方案评审、重构任务等需要多视角协作的场景。 It is an AI Agent Skill for Claude Code / OpenClaw, with 1885 downloads so far.
How do I install Three Minds?
Run "/install three-minds" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Three Minds free?
Yes, Three Minds is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Three Minds support?
Three Minds is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Three Minds?
It is built and maintained by Enderfga (@enderfga); the current version is v0.1.0.
More Skills