← Back to Skills Marketplace

Repo2

Name: Repo2
Author: mmmoeny

by mmmoeny · GitHub ↗ · v1.0.0

cross-platform ⚠ suspicious

404

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install repo2

Description

A self-evolution engine for AI agents. Analyzes runtime history to identify improvements and applies protocol-constrained evolution.

Usage Guidance

This skill is a full self‑evolver: it scans your agent logs, can write patches to the repository, execute validation commands (limited to node/npm/npx by its safety checks), and can run as a continuous daemon that restarts itself. Before installing or running it: - Treat it like a privileged code runner: do not run it in a production workspace with sensitive credentials or irreplaceable data. - Keep EVOLVE_ALLOW_SELF_MODIFY unset/false unless you intentionally want the evolver to change its own source. Prefer --review (human‑in‑the‑loop) when testing. - Inspect src/gep/solidify.js, src/gep/a2aProtocol.js and the asset promotion scripts to confirm (a) what external endpoints/transports are used and (b) what files can be modified. The a2aProtocol and promotion paths can publish assets externally if configured; disable that unless you trust the network. - Remove or vault any credentials (GITHUB_TOKEN, GH_TOKEN, any service tokens) from the environment where you run the evolver. Assume it will try to use available tokens for publishing if configured. - Run first in an isolated sandbox or disposable VM, with a read‑only copy of any important repo, to observe behavior and verify the 'validation' gating is enforced as you expect. - If you need a safer evaluation: run node index.js --review and trace what candidate patches it proposes; review asset promotion steps before using scripts that auto‑promote or publish. Summary: the skill appears to be what it claims but carries significant autonomous power (self‑patching, looped execution, external publish) that is proportionally risky. Proceed only with review mode, sandboxing, and removing/vaulting credentials.

Capability Analysis

Type: OpenClaw Skill Name: repo2 Version: 1.0.0 The Capability Evolver is a meta-skill designed for autonomous self-improvement, which involves high-risk capabilities such as self-modification of code and execution of shell commands. While the bundle includes robust safety mechanisms—including a credential redactor (src/gep/sanitize.js), a command whitelist for validations (src/gep/solidify.js), and 'constitutional ethics' prompt guards—it remains suspicious due to the inherent risk of its core functions. Specifically, it communicates with an external hub (evomap.ai) to fetch 'tasks' and 'lessons' (src/gep/taskReceiver.js) and can autonomously trigger 'npm install' on other skills (src/ops/skills_monitor.js), which could be leveraged for persistence or supply chain attacks if the external inputs or the evolution logic are compromised.

Capability Assessment

ℹ Purpose & Capability

Name/description match the code: this repo is a self‑evolution engine that reads runtime history, selects 'genes', and can apply protocol‑constrained edits. The large codebase (evolve, gep/, solidify, a2a scripts) is consistent with that purpose. However it requires filesystem read/write and can execute validation commands and spawn child processes — capabilities that are powerful but plausibly needed for an evolver. No obvious unrelated credential requests are present.

⚠ Instruction Scope

SKILL.md explicitly instructs running node index.js and describes an automated default (Mad Dog Mode) that applies changes immediately unless --review is used. The instructions and code indicate the agent will scan local history, write artifacts, run validation commands from Genes, and can operate continuously in a loop. That scope includes reading local logs/memory, modifying repository files, and producing stdout strings (sessions_spawn) that host runtimes might interpret — granting broad discretion beyond a simple helper skill.

✓ Install Mechanism

There is no external download/install spec; this is effectively an instruction + repository payload. Dependencies are minimal (dotenv). No remote binary downloads or installer URLs were found in the provided manifest. That lowers install risk, but the included code itself is substantial and will run on the host when invoked.

⚠ Credentials

Registry metadata lists no required env vars, but the code reads many EVOLVE_* and other optional environment variables, and will load a .env file if present. README and scripts reference optional GITHUB_TOKEN / release publishing variables and A2A transport (a2aProtocol) which can send messages externally. The skill will therefore read local environment and may use tokens if present. Asking for no env vars is coherent, but the code’s ability to use available credentials (git/GH publish, transport/heartbeat) increases exfiltration/privilege risk if those credentials are present in the environment.

⚠ Persistence & Privilege

always:false (good) but model invocation is enabled (normal). The skill can run continuously (daemon loop), restart itself (spawn), and autonomously apply changes unless run with --review or env flags restricting self-modification. It includes a mechanism to ingest/publish assets to an A2A network and may update repository files. This combination (autonomy + self‑patching + external publication hooks) expands blast radius and warrants caution.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install repo2
After installation, invoke the skill by name or use /repo2
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

Initial release of Capability Evolver. - Enables OpenClaw agents to analyze runtime history and autonomously evolve their own capabilities. - Provides automated log analysis, self-repair, and one-command evolution features. - Supports both automated and human-in-the-loop review modes. - Implements protocol-constrained evolution via the GEP protocol for auditable, structured improvements. - Includes environment-agnostic configuration and dynamic local overrides. - Introduces risk mitigation measures such as review mode and identity/mutation directives.

Metadata

Slug repo2

Version 1.0.0

License —

All-time Installs 1

Active Installs 1

Total Versions 1

Frequently Asked Questions

What is Repo2?

A self-evolution engine for AI agents. Analyzes runtime history to identify improvements and applies protocol-constrained evolution. It is an AI Agent Skill for Claude Code / OpenClaw, with 404 downloads so far.

How do I install Repo2?

Run "/install repo2" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Repo2 free?

Yes, Repo2 is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Repo2 support?

Repo2 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Repo2?

It is built and maintained by mmmoeny (@mmmoeny); the current version is v1.0.0.

More Skills