← Back to Skills Marketplace
359
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install mini-swe-agent
Description
Autonomously run complex software engineering tasks like bug fixes or feature implementation using the mini-swe-agent CLI with full codebase edits.
Usage Guidance
This skill tells the agent to run an unknown 'mini' CLI with an explicit autonomous flag ( --yolo ) to edit your codebase. Before installing or invoking it: 1) Do not run or install any 'mini' binary unless you can verify its source (official repo/releases, checksums, or vendor). 2) Ask the skill author for the 'mini' binary's provenance and inspect its code or release artifacts. 3) Require the skill to declare required binaries and any credentials it needs, and to limit scope (specific repo/paths/branches). 4) If you must test, run it in an isolated sandbox or disposable VM, on a cloned repo/branch with backups and no push permissions. 5) Prefer a skill that performs edits via transparent commands (git diffs, PRs) and explicit user confirmation rather than an opaque autonomous CLI. These steps will reduce risk of destructive edits or data exfiltration.
Capability Analysis
Type: OpenClaw Skill
Name: mini-swe-agent
Version: 1.0.0
The skill instructs the OpenClaw agent to execute an external, undefined command named `mini` using a bash tool. The `SKILL.md` explicitly mandates the use of the `--yolo` flag, ensuring this command runs autonomously without user intervention. While the skill itself does not contain malicious code, its reliance on an external, unverified executable combined with autonomous execution creates a significant vulnerability. If a malicious `mini` binary were present in the agent's environment (e.g., via PATH hijacking or a compromised installation), this skill would facilitate its execution, posing a high risk of arbitrary code execution or system compromise.
Capability Assessment
Purpose & Capability
The SKILL.md instructs the agent to run a CLI named 'mini' to perform end-to-end codebase edits, but the registry metadata lists no required binaries, no install steps, and no homepage/source. Asking to run an unproven external tool is not coherent with the 'instruction-only' metadata and provides no justification for how the 'mini' CLI will be obtained or trusted.
Instruction Scope
Runtime instructions explicitly require always using the '--yolo' flag so the tool runs autonomously and performs full codebase edits. There are no safety checks, sandboxing, explicit file/path limits, or requirements for user confirmation. The instructions encourage running the tool against arbitrary project paths (e.g., /src/auth.py), which could result in destructive edits or exfiltration if the external CLI is malicious.
Install Mechanism
There is no install spec and no code files — that lowers installer risk. However, the SKILL.md references an external CLI ('mini') but provides no mechanism or provenance to obtain it. The only install-like content is a local snippet that writes the SKILL.md into ~/.openclaw/skills, which is harmless on its own.
Credentials
The skill declares no required environment variables or credentials, yet its intended function (automated full-repo edits, possibly pushing changes) typically requires repository access and credentials. The absence of declared credentials or guidance for secure credential use is a mismatch and increases risk.
Persistence & Privilege
The skill is not marked 'always: true' and is user-invocable, which is normal. However, the SKILL.md's instruction to 'Always use the --yolo flag' increases the effective autonomy and blast radius if the external 'mini' CLI can act without further confirmation. Autonomy combined with an unknown external binary is risky, though the skill itself does not request persistent elevated platform privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install mini-swe-agent - After installation, invoke the skill by name or use
/mini-swe-agent - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of the mini-swe-agent skill.
- Enables autonomous execution of complex software engineering tasks via the mini-swe-agent CLI.
- Designed for end-to-end codebase exploration and editing (e.g., bug fixes, feature implementations, GitHub issue resolution).
- Always uses the --yolo flag for fully autonomous operation.
- Not intended for simple text replacements or minor fixes; use standard editing tools for those cases.
- Includes clear installation and usage instructions in SKILL.md.
Metadata
Frequently Asked Questions
What is mini-swe-agent?
Autonomously run complex software engineering tasks like bug fixes or feature implementation using the mini-swe-agent CLI with full codebase edits. It is an AI Agent Skill for Claude Code / OpenClaw, with 359 downloads so far.
How do I install mini-swe-agent?
Run "/install mini-swe-agent" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is mini-swe-agent free?
Yes, mini-swe-agent is completely free (open-source). You can download, install and use it at no cost.
Which platforms does mini-swe-agent support?
mini-swe-agent is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created mini-swe-agent?
It is built and maintained by c1nder (@c1nderscript); the current version is v1.0.0.
More Skills