← Back to Skills Marketplace
Wolverine — Self-Healing Process Manager
by
bobbyswhip
· GitHub ↗
· v1.0.2
· MIT-0
94
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install wolverine-ai
Description
Supervised self-healing process manager for OpenClaw. Wraps your gateway in a crash recovery loop — catches errors, diagnoses with AI, proposes fixes for rev...
Usage Guidance
This skill is plausible for self-healing OpenClaw but has real power (it edits code, runs commands, and installs an npm CLI). Before installing: 1) Verify the npm package and GitHub repo (publisher identity, recent commits, issues, and package contents). 2) Test in an isolated staging environment or container, not production. 3) Only provide the minimum API key needed (rotate keys and avoid sharing long-lived credentials). 4) Inspect or audit the installed package code (or pin to a vetted version) so you can confirm the claimed sandboxing, secret-redaction, and protected-path behavior. 5) Be aware SKILL.md references OPENAI_API_KEY even though it isn’t declared — ask the publisher whether that variable is required and what it’s used for. If you lack the ability to audit the package, treat this as higher risk and avoid deploying it against sensitive environments.
Capability Analysis
Type: OpenClaw Skill
Name: wolverine-ai
Version: 1.0.2
The skill implements a 'self-healing' mechanism that uses AI to automatically diagnose crashes and modify source code. This architecture is inherently high-risk as it creates a significant surface for indirect prompt injection, where an attacker could trigger specific error logs to trick the AI into 'fixing' the code with a backdoor. While SKILL.md describes extensive security features (Code Guard, Secret Redactor, and Sandboxing), the core functionality of automated code modification and execution of an external npm package (wolverine-ai) represents a major security risk in an agentic environment.
Capability Assessment
Purpose & Capability
Name/description (self-healing process manager using AI) aligns with required binaries (node/npm) and the declared primary credential (ANTHROPIC_API_KEY). Installing an npm package that provides command-line binaries (wolverine, wolverine-claw) is coherent with the stated goal.
Instruction Scope
SKILL.md instructs the agent to read project config (.openclaw/config.yml), create backups in ~/.wolverine-safe-backups, modify code (apply fixes), run npm install/chmod/kill, and probe boots. It also references an optional OPENAI_API_KEY for embeddings (not declared by the registry metadata). These instructions grant broad filesystem and process control beyond simple read-only monitoring; the skill claims protections (read-only framework dirs, sandbox, secret redactor), but those are assertions in prose and not enforced by the registry metadata.
Install Mechanism
Install is an npm package (wolverine-ai) which is a common distribution for Node CLIs. That means arbitrary JS will be installed and run on the host — moderate risk and expected for this type of tool, but you should verify the npm package and its source (maintainer, releases, code) before installing.
Credentials
Registry requires only ANTHROPIC_API_KEY (reasonable). However, SKILL.md also references OPENAI_API_KEY (optional) and expects secrets in .env.local. The skill has wide file-write capabilities (backups, code edits). Requesting an AI API key is expected, but the presence of additional environment variables in the runtime instructions that aren’t declared is an inconsistency and reduces transparency about what secrets the skill may use or need.
Persistence & Privilege
The skill is not always-enabled and does not request elevated OpenClaw platform privileges in metadata, which is good. But it does install binaries and writes backups under the user home directory, and it will modify project files at runtime. Those are legitimate for a self-healing tool but increase blast radius — consider isolation (container/VM) and careful review before granting access to production workspaces.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install wolverine-ai - After installation, invoke the skill by name or use
/wolverine-ai - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
- Description and documentation clarified to emphasize supervised healing; all fixes now require review before application.
- Reduced and simplified feature list: advanced multi-agent, browser tools, and auto-hardening pipelines are no longer referenced.
- Strengthened safety controls: all file modifications are now always preceded by a backup and require explicit rollback steps.
- Major constraints and healing limits (rate limiting, timeouts, restricted directories) are now central in documentation.
- Security section updated to focus on runtime code guard, prompt injection detection, redaction, and strict sandboxing.
- Examples and interface documentation streamlined for easier onboarding and human oversight.
v1.0.1
Version 1.0.1 of wolverine-ai
- No file changes detected for this release.
- No user-facing changes, bug fixes, or new features added.
- Functionality and documentation remain the same as the previous release.
v1.0.0
- Initial release of wolverine: a self-healing process manager for OpenClaw.
- Automatically detects, diagnoses, and fixes crashes with AI-powered repair; restarts your gateway process.
- Includes runtime code injection detection (33+ patterns), with quarantine and forensic logging of suspicious files.
- Supports automatic backup and rollback for every change, with disaster recovery tools.
- Features semantic memory to learn from past fixes and reduce repeated costs.
- Built-in self-improvement pipeline hardens security in response to blocked attacks.
Metadata
Frequently Asked Questions
What is Wolverine — Self-Healing Process Manager?
Supervised self-healing process manager for OpenClaw. Wraps your gateway in a crash recovery loop — catches errors, diagnoses with AI, proposes fixes for rev... It is an AI Agent Skill for Claude Code / OpenClaw, with 94 downloads so far.
How do I install Wolverine — Self-Healing Process Manager?
Run "/install wolverine-ai" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Wolverine — Self-Healing Process Manager free?
Yes, Wolverine — Self-Healing Process Manager is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Wolverine — Self-Healing Process Manager support?
Wolverine — Self-Healing Process Manager is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Wolverine — Self-Healing Process Manager?
It is built and maintained by bobbyswhip (@bobbyswhip); the current version is v1.0.2.
More Skills