← Back to Skills Marketplace
342
Downloads
0
Stars
0
Active Installs
3
Versions
Install in OpenClaw
/install seed
Description
Grow firmware on any hardware through HTTP — upload C, compile on device, apply with watchdog rollback
Usage Guidance
This skill implements a powerful mechanism: it lets you upload C code to a device, compile it there, and grant that code the ability to read files and run shell commands. Only install or run 'seed' on machines you fully control and isolate (do not run on multi-tenant systems or internet-exposed servers). Before running: review the seed.c source yourself (do not blindly curl | run), prefer cloning the GitHub repo and building locally, restrict network access and run the service inside a sandbox/container with minimal permissions, rotate and protect any tokens produced by seed, and monitor logs and file integrity. If you need to test, use a disposable VM or hardware you can wipe. If you are not comfortable auditing C code or the runtime behavior, do not deploy this skill or the seed software.
Capability Analysis
Type: OpenClaw Skill
Name: seed
Version: 0.1.2
The 'seed' skill provides a framework for Remote Code Execution (RCE) by allowing an AI agent to write, compile, and hot-swap C code on a remote target via an HTTP API. It includes explicit primitives for shell command execution (`cmd_out`) and hardware discovery, essentially functioning as a programmable remote access tool. While the stated intent in SKILL.md is 'self-growing firmware' development, the capabilities are extremely high-risk and the deployment instructions involve fetching and executing remote code (github.com/Awis13/seed), which is a common vector for system compromise.
Capability Assessment
Purpose & Capability
Name/description (grow firmware via HTTP, compile on-device, watchdog rollback) align with the declared requirements (curl, gcc) and the SKILL.md API. Asking for no credentials and only requiring curl/gcc is coherent for this functionality.
Instruction Scope
The SKILL.md instructs the agent and user to download and run a seed binary and then supports uploading arbitrary C source, compiling it on-device, and providing handler helpers (file_read, file_write, cmd_out). Those helpers allow reading arbitrary files, writing files, and running shell commands on the target device — capabilities that go well beyond simply 'deploying firmware' and can be used to exfiltrate secrets or escalate access. The instructions also show how to fetch the seed source from a raw GitHub URL and run it, which instructs executing remotely fetched code unless the user audits it first.
Install Mechanism
This is instruction-only (no install spec). SKILL.md directs using curl to download seed.c from raw.githubusercontent.com and compiling locally; raw.githubusercontent.com is a known host (lower-than-arbitrary-URL risk) but 'curl-and-run' remains high-risk in practice. Nothing in the skill auto-installs software on the agent's host, but it does instruct users to run code they fetch.
Credentials
The skill itself declares no environment variables and only requires curl/gcc, which is proportional. However, the firmware API exposes file_read and cmd_out that can access arbitrary local files and run commands on the device — meaning sensitive environment data or credentials on a device running seed can be read or invoked by uploaded firmware. Those risks are real even though the skill doesn't ask for credentials explicitly.
Persistence & Privilege
always:false (good). The skill can be invoked autonomously (default), which is normal; if the agent is allowed to act without supervision, combined with the skill's ability to instruct deployment of a self-updating firmware, the blast radius increases. The skill does not request permanent system privileges itself, but the firmware it helps install can gain long-lived control of a device.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install seed - After installation, invoke the skill by name or use
/seed - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.2
- Added a "First steps" section to guide users in obtaining a seed node address and token.
- Included clear instructions for deploying a new seed node on any Linux machine.
- Made it explicit that the seed binary is ~70KB and requires only libc.
- Improved initial onboarding for users who don't have a node running yet.
v0.1.1
- Added a "Source" link to the GitHub repository at the top of the documentation for easier access to project source code.
- No other content or functional changes made; documentation remains largely the same.
v0.1.0
Initial release of seed — HTTP-native self-growing firmware for any hardware.
- Upload, edit, and compile C firmware directly on the device via HTTP API.
- Auto-detects and reports device hardware capabilities (CPU, RAM, disk, peripherals).
- Hot-swap new firmware with atomic rollback if health check fails.
- Includes endpoints for reading/writing firmware, compiling, applying, and querying config/events.
- Secure access via token authentication, with safe recovery for failed firmware flashing.
Metadata
Frequently Asked Questions
What is Seed?
Grow firmware on any hardware through HTTP — upload C, compile on device, apply with watchdog rollback. It is an AI Agent Skill for Claude Code / OpenClaw, with 342 downloads so far.
How do I install Seed?
Run "/install seed" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Seed free?
Yes, Seed is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Seed support?
Seed is cross-platform and runs anywhere OpenClaw / Claude Code is available (darwin, linux).
Who created Seed?
It is built and maintained by Awis13 (@awis13); the current version is v0.1.2.
More Skills