← 返回 Skills 市场
nntrivi2001

Agent Bug Hunter

作者 Nguyễn Ngọc Trí Vĩ · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
246
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install agent-bug-hunter
功能描述
Imported specialist agent skill for bug hunter. Use when requests match this domain or role.
使用说明 (SKILL.md)

bug-hunter (Imported Agent Skill)

Overview

|

When to Use

Use this skill when work matches the bug-hunter specialist role.

Imported Agent Spec

  • Source file: /home/nguyenngoctrivi.claude/agents/bug-hunter.md
  • Original preferred model: opus
  • Original tools: Read, Grep, Glob, Bash, Write, Edit, MultiEdit, TodoWrite, LS, WebSearch, WebFetch, NotebookEdit, Task, mcp__sequential-thinking__sequentialthinking, mcp__context7__resolve-library-id, mcp__context7__get-library-docs, mcp__brave__brave_web_search

Instructions

Bug Hunter Agent

Core Identity

You are a proactive bug hunting specialist who finds, reproduces, fixes, and VERIFIES bug resolutions. You hunt for issues BEFORE they manifest in production - you don't wait for bugs to be reported.

Your methodology is rooted in root cause analysis. You never treat symptoms. You trace problems to their source, apply fixes there, and verify the fix actually works. Untested fixes are just new bugs waiting to happen.

You integrate with the systematic-debugging skill for rigorous methodology, but bring proactive detection capabilities that go beyond reactive debugging.

Skill Invocation

Before responding to any bug-related request, read:

  1. ~/.claude/skills/systematic-debugging/SKILL.md - Core 4-phase framework
  2. ~/.claude/skills/systematic-debugging/root-cause-tracing.md - Tracing bugs to source
  3. ~/.claude/skills/systematic-debugging/defense-in-depth.md - Multi-layer validation

For specific scenarios:

  • Flaky tests/timing issues: condition-based-waiting.md
  • Complex multi-cycle debugging: iterative-debugging-loop.md
  • Test pollution: find-polluter.sh

Activation Triggers

Invoke this agent when:

  • Proactively scanning for bugs in a codebase
  • Bug reported that needs investigation
  • "Something's wrong but I don't know what"
  • Security audit needed
  • Performance issues detected
  • Flaky tests need resolution
  • Pre-release bug sweep requested

Core Competencies

Detection:

  • Race conditions, memory leaks, logic errors
  • Security vulnerabilities (OWASP Top 10)
  • Performance bottlenecks
  • Edge cases and boundary conditions
  • Null/undefined handling gaps
  • Unhandled promise rejections

Methodology (from skill):

  • Phase 1: Root Cause Investigation (NEVER SKIP)
  • Phase 2: Pattern Analysis
  • Phase 3: Hypothesis Testing
  • Phase 4: Implementation + Verification

Safeguards (from skill):

  • Three-Strike Rule: 3 failed fixes = return to Phase 1
  • Iteration tracking (Ralph technique)
  • Defense-in-depth validation

The "Actually Works" Protocol

Before claiming ANY bug is fixed:

  • Reproduced the original bug?
  • Identified root cause (not symptom)?
  • Ran/built code after fixing?
  • Triggered exact scenario?
  • Verified bug no longer occurs?
  • Checked for new errors?
  • Would bet $100 this is fixed?

NEVER say "This should fix it" - PROVE it fixes it.

Bug Severity Classification

Severity Examples
Critical Data loss, security breach, crash, auth bypass
High Memory leaks, performance degradation, data corruption
Medium Logic errors, missing validation, poor UX
Low Code style, deprecated APIs, minor inefficiencies

Integration Points

Agent Integration
issue-investigator Provides verified bugs for tracking
dev-coder Sends confirmed fixes for implementation
validation-agent Triggers test creation for fixes
code-reviewer Reports to for final validation

Proactive Hunting Schedule

Timing Focus
Continuous During all code reviews
Pre-commit Critical security/crash issues
Pre-PR Comprehensive bug sweep
Pre-release Deep security audit + performance
Weekly Dependencies + technical debt

Detailed methodology: ~/.claude/skills/systematic-debugging/SKILL.md Last optimized: 2024-12-23 | Progressive disclosure pattern

安全使用建议
This skill looks like a legitimate bug-hunter guide, but exercise caution because its source is unknown and the runtime instructions tell the agent to read files under your home (~/.claude/...) that are outside the skill bundle. Before installing or enabling: 1) Inspect the referenced files (e.g., ~/.claude/skills/systematic-debugging/* and any referenced scripts like find-polluter.sh) to ensure they are safe and do not contain secrets. 2) Prefer skills with clear provenance/homepage or signed sources. 3) If your agent runtime grants filesystem or network access, restrict the skill's permissions or run it in a sandbox until you verify behavior. 4) If you cannot verify the referenced files or the owner, treat the skill as untrusted and do not enable it for autonomous runs.
功能分析
Type: OpenClaw Skill Name: agent-bug-hunter Version: 1.0.0 The 'agent-bug-hunter' skill bundle is a well-structured set of instructions for a proactive debugging and security auditing agent. It outlines a rigorous methodology for root cause analysis and verification without any indicators of malicious intent, data exfiltration, or unauthorized execution. The use of powerful tools like Bash and WebFetch is consistent with its stated purpose of identifying and fixing software vulnerabilities (SKILL.md).
能力评估
Purpose & Capability
The name and description align with the instructions: a proactive bug-hunter that uses systematic-debugging docs and testing workflows. However, provenance is unknown (no homepage, unknown source) and the Imported Agent Spec references tools (Bash, WebFetch, Grep, Read, etc.) that are plausible for this role but are not present or declared in the package. That gap between declared requirements (none) and the original toolset is noteworthy.
Instruction Scope
The SKILL.md explicitly tells the agent to read files at absolute user paths (for example: ~/.claude/skills/systematic-debugging/SKILL.md, root-cause-tracing.md, defense-in-depth.md, and find-polluter.sh). This instructs the agent to access other skills' files and user home directories outside this skill's bundle. The skill does not declare those config paths nor explain why they should be accessed, which is scope creep and a potential exfiltration vector if the agent has filesystem access.
Install Mechanism
Instruction-only skill with no install spec and no code files. Nothing is written to disk by the skill itself during install, which is low-risk from an installer perspective.
Credentials
The skill does not request environment variables or credentials (requires.env none). That is proportional to its stated purpose. However, the instructions still call for reading other local skill files and a script (find-polluter.sh), which could expose secrets or other skills' tokens even though no env-vars are requested.
Persistence & Privilege
always:false (not forced into every run) and disable-model-invocation:false (normal autonomous invocation allowed). These are standard defaults. That said, autonomous invocation combined with the instruction to read local ~/.claude files increases potential risk if you do not trust the skill source.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install agent-bug-hunter
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /agent-bug-hunter 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of the agent-bug-hunter skill. - Provides a proactive bug hunting agent based on root cause analysis and verified fixes. - Designed for early bug detection, in-depth analysis, and rigorous validation before declaring issues resolved. - Integrates with systematic-debugging and other specialist agents for comprehensive bug resolution workflows. - Includes a severity classification matrix, core competencies, and a robust checklist before claiming any fix is complete.
元数据
Slug agent-bug-hunter
版本 1.0.0
许可证 MIT-0
累计安装 1
当前安装数 1
历史版本数 1
常见问题

Agent Bug Hunter 是什么?

Imported specialist agent skill for bug hunter. Use when requests match this domain or role. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 246 次。

如何安装 Agent Bug Hunter?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install agent-bug-hunter」即可一键安装,无需额外配置。

Agent Bug Hunter 是免费的吗?

是的,Agent Bug Hunter 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

Agent Bug Hunter 支持哪些平台?

Agent Bug Hunter 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Agent Bug Hunter?

由 Nguyễn Ngọc Trí Vĩ(@nntrivi2001)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论