← Back to Skills Marketplace
gitlab-weekly-report
by
zhoutianwang
· GitHub ↗
· v1.0.0
· MIT-0
261
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install gitlab-weekly-report
Description
通过 GitLab API 查询并整理指定时间段内个人提交记录,自动生成规范的周报格式。
README (SKILL.md)
GitLab 周报生成器
通过 GitLab API 查询个人提交记录,自动整理成周报格式。
快速使用
直接告诉我:帮我查一下这周(或上周)的 git 提交
例如:
- "帮我查这周的 git 提交"
- "帮我整理上周的周报"
- "生成这周的 GitLab 周报"
我会自动调用 API 获取数据并整理成规范的周报格式。
周报输出格式
## 📋 周报 (2026.03.09 - 2026.03.13)
### 一、项目名称 (项目路径)
- **【类型】功能标题**
- 详细描述(从完整 commit message 中提取)
### 二、项目名称
- ...
---
### 本周总结
- 共提交 X 次,涉及 X 个项目
- 主要工作:
1. 功能开发/优化
2. 修复
3. 代码重构
生成流程(自动化)
重要:请使用 gitlab_weekly_report.py 脚本获取数据,不要手动调用 curl 或浏览器!
-
调用脚本获取数据
cd ~/.openclaw/workspace/skills/gitlab-weekly-report python3 gitlab_weekly_report.py --token 你的token --user-id 46 --after 2026-03-09 --before 2026-03-13 -
脚本自动完成:
- 调用 Events API 获取本周项目列表
- 根据 project_id 获取项目名称
- 整理提交记录生成周报
-
手动补充:根据脚本输出的原始 commit message,按照"提交内容美化规则"进行美化
直接使用脚本
# 这周的提交
python3 gitlab_weekly_report.py --token (初始数据)你自己的令牌key --user-id 46 --after 2026-03-09
# 上周的提交
python3 gitlab_weekly_report.py --token (初始数据)你自己的令牌key --user-id 46 --after 2026-03-02 --before 2026-03-09
提交内容美化规则
从完整 commit message 中提取关键信息:
| 原始类型 | 美化后 |
|---|---|
| feat | 【新增】 |
| fix | 【修复】 |
| refactor | 【优化】 |
| 调整 xxx | 【优化】xxx |
| 修复:xxx | 【修复】xxx |
| 开发 xxx | 【新增】xxx |
| Merge | 【合并】代码 |
API 参数说明
Events API
| 参数 | 说明 |
|---|---|
| action | 固定值 pushed |
| author_id | 用户 ID(你的:46) |
| after | 开始日期(YYYY-MM-DD) |
| before | 结束日期(YYYY-MM-DD) |
| per_page | 每页数量(建议 100) |
Commits API
| 参数 | 说明 |
|---|---|
| project_id | 项目 ID(从 Events 获取) |
| ref_name | 分支名(从 Events push_data 获取) |
| since | 开始日期 |
| until | 结束日期 |
配置信息(已保存)
- 用户 ID: (初始数据)用户id
- 用户名: (初始数据)你的用户名
- 邮箱: (初始数据)你的邮箱地址
- Token:
git个人令牌
常见问题
Q: 为什么提交记录不完整?
A: GitLab API 默认每页只返回 20 条,需要加 &per_page=100 参数获取更多。
Q: 如何查看某个项目的完整提交? A: 使用 Commits API 并指定分支名,可以获取完整的 commit message。
Q: 如果SKILL中都是(初始数据),需要提醒用户给配置对应的数据? A: 提醒用户提供对应的数据内容。
Q: gitlab_weekly_report.py中需要修改自己公司git地址路径? A: 修改访问地址。
Usage Guidance
This skill mostly does what it says, but check a few things before installing or running it:
- Credentials: The metadata does not declare that a GitLab token is required, yet the script needs a Personal Access Token. Treat that token as sensitive. Prefer providing it via a protected environment variable or a secure config file rather than on the command line.
- CLI exposure: Running the script with --token will expose the token in process listings (ps). If other users share the machine, avoid passing secrets on the CLI.
- GITLAB_URL: The script has GITLAB_URL set to an internal placeholder. Make sure it points to your intended GitLab instance and not an unexpected host.
- Proxy bypass: The script calls curl with '--noproxy "*"' which forces direct connections and can bypass corporate proxies or monitoring — remove that flag if you need proxy or audit logging.
- Hardcoded author: The code uses author_name="zhouyi" when querying commits. If you are not that user, edit/remove this to ensure correct results.
- Transparency: The registry metadata should state the credential requirement (primaryEnv) so you clearly understand what will be needed. If you depend on this skill, request the maintainer update metadata and replace CLI token usage with a safer method.
If you are comfortable editing the script: replace curl subprocess calls with an HTTP library (requests), accept token from env or prompt, remove '--noproxy', and remove or parameterize the hardcoded author. If you cannot review/edit the script, do not supply production tokens to it.
Capability Analysis
Type: OpenClaw Skill
Name: gitlab-weekly-report
Version: 1.0.0
The skill uses a Python script (gitlab_weekly_report.py) that executes system-level commands via `subprocess` to run `curl`. It includes risky configurations such as disabling SSL certificate verification (`-k`) and bypassing proxies, which are potential security vulnerabilities. Additionally, the script contains hardcoded user identifiers (e.g., `author_name="zhouyi"` and `user-id 46`) and instructs the agent to handle sensitive GitLab Personal Access Tokens, which could lead to credential exposure if not handled carefully within the OpenClaw environment.
Capability Assessment
Purpose & Capability
The name/description (generate GitLab weekly reports) matches the code and SKILL.md: the script queries GitLab Events/Commits and formats a report. However the registry metadata lists no required credentials or env vars while the instructions and script require a Personal Access Token and user id — this mismatch is unexpected and reduces transparency. Also the script hardcodes author_name="zhouyi" in commit queries, which makes it tied to a specific user rather than fully generic.
Instruction Scope
SKILL.md instructs users to run the included script with a token argument and to run it from a specific workspace path. The script uses subprocess to invoke curl with '--noproxy "*"' which explicitly bypasses proxy configuration (may circumvent network monitoring or corporate proxies). It also requires passing the token on the command line (exposes the token to local process listings). The instructions direct data only to the GitLab API (no external endpoints), but the proxy-bypass and CLI-token exposure are notable scope/operational concerns.
Install Mechanism
There is no install spec (instruction-only with an included script). Nothing is downloaded or written by an installer. This is the lowest-risk install mechanism.
Credentials
The skill requires sensitive credentials (a GitLab Personal Access Token and a user id) according to SKILL.md and the script, but the registry metadata does not declare any required env vars or primary credential. That mismatch reduces transparency. Additionally, passing the token as a CLI argument exposes it to other local users via process listings; the script also hardcodes an author filter (zhouyi) which is unexpected and not justified by the generic description.
Persistence & Privilege
The skill does not request persistent or elevated privileges. always is false and there is no installation that modifies other skills or system-wide configs. The script does not write persistent tokens or change agent settings.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install gitlab-weekly-report - After installation, invoke the skill by name or use
/gitlab-weekly-report - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- 首发版本,自动生成 GitLab 周报
- 支持通过 GitLab API 查询个人提交记录
- 一键整理本周或上周的提交为规范的周报格式
- 输出分项目、分类型详细整理,含提交类型美化
- 提供命令行脚本和详细参数说明,易于上手
- 覆盖常见问题和自定义配置信息
Metadata
Frequently Asked Questions
What is gitlab-weekly-report?
通过 GitLab API 查询并整理指定时间段内个人提交记录,自动生成规范的周报格式。 It is an AI Agent Skill for Claude Code / OpenClaw, with 261 downloads so far.
How do I install gitlab-weekly-report?
Run "/install gitlab-weekly-report" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is gitlab-weekly-report free?
Yes, gitlab-weekly-report is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does gitlab-weekly-report support?
gitlab-weekly-report is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created gitlab-weekly-report?
It is built and maintained by zhoutianwang (@zhoutianwang); the current version is v1.0.0.
More Skills