← Back to Skills Marketplace
307
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install agent-loop
Description
Structured Read→Plan→Execute→Verify→Report protocol for any task with side effects. Prevents false "done" reports, blind retries, and scope creep. Activate f...
README (SKILL.md)
Agent Loop
Core rule: You must complete each phase in order. Do not skip phases. Do not report "done" until you have evidence from the Verify phase.
Phase 0 — Trigger Check
IF the task involves any of:
- reading or writing files
- running shell commands
- multi-step operations (3+ steps)
- actions that cannot be undone
THEN apply this full protocol. ELSE (pure Q&A, one-sentence reply) → skip this skill entirely.
Phase 1 — READ
Before touching anything:
- IF you need to edit a file → read it first, in this session
- IF you need to know a file's content → read it, never recall from memory
- IF you need to run a command → confirm what it does before running
FORBIDDEN: Edit a file you have not read this session
FORBIDDEN: Assume file content without reading
Phase 2 — PLAN
IF task has 3+ steps → write a numbered plan before executing:
Plan:
1. Read \x3Cfile>
2. Edit \x3Cfile>: change X → Y
3. Run \x3Ccommand> to verify
4. Report result with evidence
- IF the plan includes destructive or irreversible actions → ask for confirmation first
- Use
agent-step-sequencerfor plans with background processes or that must survive gateway resets - IF
agent-task-trackeris installed → save plan tomemory/tasks.md
Phase 3 — EXECUTE
- Complete one step fully before starting the next
- Record progress in
memory/tasks.mdafter each step
IF a step fails:
- Read the full error message completely
- Identify the root cause — do not guess
- Change your approach before retrying
FORBIDDEN: Retry the same failing command unchanged
FORBIDDEN: Skip a failed step and continue as if it succeeded
Phase 4 — VERIFY
Before reporting done, confirm success with evidence:
| What you did | How to verify |
|---|---|
| Edited a file | Read it again — confirm the change is present |
| Ran a command | Check exit code AND output content |
| Created a file | Confirm it exists and has expected content |
| Ran tests | Confirm all pass — not just "no crash" |
| Deleted something | Confirm it no longer exists |
FORBIDDEN: Report "done" without running a verification step
FORBIDDEN: Treat absence of error as proof of success
Phase 5 — REPORT
Report exactly three things:
- What was done — one or two sentences
- Verification evidence — what you checked and what it showed
- Caveats / next steps — if any
Error Recovery Protocol
IF stuck after 2 failed attempts:
- Stop retrying
- Report the blocker clearly: what you tried, exact error, what you think is wrong
- Ask the user for direction
FORBIDDEN: Silently swallow errors and report success
FORBIDDEN: Retry more than twice without changing the approach
Scope Control
Only do what was asked.
- IF you notice an unrelated bug → note it in your report, do not fix it
- IF you notice something to refactor → mention it, do not act on it
FORBIDDEN: Fix, refactor, or improve anything not mentioned in the task
Usage Guidance
This skill is internally consistent and does what it says: it provides a strict five-phase protocol for tasks that change state. Before installing or enabling it, consider these points: (1) it instructs the agent to read files and to save plans/progress to memory/tasks.md — if your agent's memory is persistent, that could store sensitive file contents or command output; confirm retention, access controls, and redaction policies for memory. (2) If you use agent-step-sequencer or agent-task-tracker, review their behaviors (background processes, persistence) before linking them. (3) Prefer keeping autonomous invocation enabled only for trusted agents; require user confirmation for destructive or irreversible steps (the skill does recommend asking for confirmation, but enforce this on the platform side if possible). (4) If you're unsure, run the skill in a low-privilege sandbox or disable persistent memory writes until you can audit what is being stored.
Capability Analysis
Type: OpenClaw Skill
Name: agent-loop
Version: 1.0.0
The skill bundle defines a structured protocol for an AI agent (Read→Plan→Execute→Verify→Report) aimed at improving reliability and preventing errors. The `SKILL.md` instructions emphasize safety practices like reading files before editing, confirming commands before running, asking for confirmation for destructive actions, and strict verification. Crucially, it includes 'FORBIDDEN' rules that actively prevent common agent vulnerabilities such as blind execution, unverified actions, and scope creep, which are positive security controls. There is no evidence of malicious intent, data exfiltration, unauthorized execution, or prompt injection designed to harm the agent or its environment.
Capability Assessment
Purpose & Capability
Name and description (structured Read→Plan→Execute→Verify→Report) match the content of SKILL.md. The skill requires no binaries, credentials, or installs, which is appropriate for a pure procedural guidance skill.
Instruction Scope
Instructions are narrowly scoped to guiding agent behavior for tasks with side effects. However the SKILL.md explicitly tells the agent to read files before editing and to record progress in memory/tasks.md; it does not specify sanitization or limits on what is persisted. That creates a privacy/data-retention risk if sensitive file contents are saved into persistent memory.
Install Mechanism
No install spec or code files are present. Being instruction-only means nothing new is written to disk by an installer — low install risk.
Credentials
The skill declares no environment variables or external credentials (appropriate). It references optional integrations (agent-task-tracker, agent-step-sequencer) and a memory path (memory/tasks.md) without declaring those as required; this is reasonable but means the agent may use persistent memory/storage if available, which should be considered when granting the agent memory access.
Persistence & Privilege
Flags are default (always:false, model invocation allowed). Autonomous invocation is normal, but combined with the explicit instruction to write to memory/tasks.md and to persist plans/progress, this increases the chance that sensitive data (file contents, commands, errors) will be stored persistently. The skill itself does not request elevated OS privileges or system-wide config changes.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install agent-loop - After installation, invoke the skill by name or use
/agent-loop - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: Read→Plan→Execute→Verify→Report protocol for local LLMs. Enforces disciplined
execution loop with FORBIDDEN rules, error recovery, and scope control. Integrates with agent-task-tracker and
agent-step-sequencer.
Metadata
Frequently Asked Questions
What is Agent Loop?
Structured Read→Plan→Execute→Verify→Report protocol for any task with side effects. Prevents false "done" reports, blind retries, and scope creep. Activate f... It is an AI Agent Skill for Claude Code / OpenClaw, with 307 downloads so far.
How do I install Agent Loop?
Run "/install agent-loop" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Agent Loop free?
Yes, Agent Loop is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Agent Loop support?
Agent Loop is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Agent Loop?
It is built and maintained by cycy2xxx (@cycy2xxx); the current version is v1.0.0.
More Skills