← Back to Skills Marketplace

SoulForge

Name: SoulForge
Author: taha2053

by Almouthana Taha Khalfallah · GitHub ↗ · v1.0.0

cross-platform ⚠ suspicious

714

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install soul-forge

Description

Automatically evolves your SOUL.md by analyzing your conversation patterns and behavior, then proposes updates to reflect who you truly are over time.

Usage Guidance

This skill appears to do what it says: it processes local session logs and proposes edits to SOUL.md. Before installing, review the scripts (observe.py, reflect.py, forge.py) yourself because they will read your session history (which may contain private or sensitive data) and store aggregated observations in memory/observations.json and backups under memory/backups. If you want to review everything before any changes, keep auto-observation disabled (add soulforge: observe: false to your config) and avoid running forge with any auto-accept flags. If you have sensitive data in session logs you don't want processed, remove or redact those logs first. Finally, consider inspecting/validating the installed scripts (and any CLI flags like --auto-accept) to ensure they behave as you expect.

Capability Analysis

Type: OpenClaw Skill Name: soul-forge Version: 1.0.0 The skill bundle is classified as suspicious due to a potential path traversal vulnerability in `forge.py`, `observe.py`, and `reflect.py`. These scripts accept `--soul` or `--file` arguments and use the provided paths directly with `Path()` for file operations (read/write) without explicit sanitization. While the documentation and security manifests consistently claim local-only, read-mostly, and user-approved operations, a malicious input path (e.g., `../../../../etc/passwd`) could allow unauthorized file access. There is no evidence of intentional malicious behavior such as data exfiltration, backdoors, or prompt injection designed to subvert the agent's core directives; the stated purpose and code logic are aligned with self-reflection and evolution of the agent's `SOUL.md` file.

Capability Assessment

✓ Purpose & Capability

The name/description (analyzing conversation patterns to propose SOUL.md updates) matches what the scripts do: they read session logs, accumulate observations, produce human-readable reflections and proposals, back up SOUL.md, and write only after approval. No unrelated credentials, binaries, or external services are requested.

ℹ Instruction Scope

SKILL.md and scripts state the skill reads local session history and SOUL.md and stores aggregated signals in memory/observations.json. This is appropriate for the stated purpose, but it means the skill will process whatever is in your session logs (which can contain sensitive data). SKILL.md claims all analysis is local and that changes are only applied with approval; the code implements proposals and interactive approval. There is a CLI / README mention of an --auto-accept flag (auto-apply high-confidence proposals) — if used, that could reduce manual review, so users should be aware before enabling it.

✓ Install Mechanism

There is no network install or external download. This is an instruction-only skill with included Python scripts that use only the standard library. No install spec or third-party packages are pulled in.

✓ Credentials

The skill requests no environment variables, no credentials, and no config paths. The scripts' declared file accesses (session logs, SOUL.md, memory/observations.json, backups) are proportionate to its stated purpose.

ℹ Persistence & Privilege

always:false. The skill can run automatically every 10 sessions (configurable) to collect observations and can be invoked manually. Autonomous invocation is platform-default and not by itself a problem, but users should note the auto-observation behavior and the README/CLI mention of an --auto-accept option which, if used, could apply changes without interactive approval.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install soul-forge
After installation, invoke the skill by name or use /soul-forge
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

SoulForge 1.0.0 — Initial Release - Automatically observes your real session patterns to propose updates for your SOUL.md. - Surfaces actionable insights and suggestions based on recurring behavior, decisions, tone, and language. - Proposes clear, reasoned edits for your approval—no SOUL.md changes happen without you. - All analysis is fully local: no external endpoints, no telemetry, no credentials required. - Keeps a complete version history with restore and timeline features for your evolving SOUL.md. - Auto-observes every 10 sessions for continuous, privacy-respecting evolution of your agent's soul.

Metadata

Slug soul-forge

Version 1.0.0

License —

All-time Installs 3

Active Installs 3

Total Versions 1

Frequently Asked Questions

What is SoulForge?

Automatically evolves your SOUL.md by analyzing your conversation patterns and behavior, then proposes updates to reflect who you truly are over time. It is an AI Agent Skill for Claude Code / OpenClaw, with 714 downloads so far.

How do I install SoulForge?

Run "/install soul-forge" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is SoulForge free?

Yes, SoulForge is completely free (open-source). You can download, install and use it at no cost.

Which platforms does SoulForge support?

SoulForge is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created SoulForge?

It is built and maintained by Almouthana Taha Khalfallah (@taha2053); the current version is v1.0.0.

More Skills