← 返回 Skills 市场

Bug Hunt

Name: Bug Hunt
Author: solomonneas

作者 Solomon Neas · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ✓ 安全检测通过

总下载

当前安装

版本数

在 OpenClaw 中安装

/install bug-hunt

功能描述

Use when asked to find bugs, hunt for correctness issues, sweep a codebase for defects, or verify a repo behaves as intended. Not for style or architecture r...

使用说明 (SKILL.md)

bug-hunt

A correctness sweep that only reports bugs it failed to refute. Finders generate candidates; verifiers try to kill them; survivors make the report. The single biggest failure mode of agent bug-hunting is plausible-but-wrong findings, so verification is not optional.

Read-only. Finding bugs and fixing them are separate engagements.

Lenses

Sweep with each lens. With parallel subagents available, one finder per lens; otherwise sequential passes.

Lens	Hunting for
Logic	Inverted conditions, off-by-one, wrong operator, unreachable branches, broken invariants
Error handling	Swallowed exceptions, missing error paths, errors that corrupt state before propagating, misleading messages
Edge cases	Empty/nil/zero inputs, unicode, huge inputs, boundary values, first/last iteration
Concurrency	Races, missing locks, shared mutable state, TOCTOU, async ordering assumptions
API misuse	Contract violations against libraries and the project's own interfaces, ignored return values, resource leaks, lifecycle errors

Focus finders on code that is reachable and load-bearing: entry points, hot paths, recently changed files (git log --since is a good prior). A bug in dead code is info, not a finding.

Verification (mandatory)

Every candidate gets an adversarial pass before it may appear in the report. The verifier's job is to REFUTE the finding, default skeptical:

Read the actual code path end to end, including callers and guards the finder may have missed.
Trace a concrete input that triggers the bug. No trigger, no bug.
Check whether a test, type system, or runtime check already prevents it.
Verdict: confirmed (with the triggering scenario), refuted (drop silently), or unverifiable (report downgraded one severity, marked (unverified)).

When tests can be run safely (no external dependencies, sandboxed), a failing reproduction test is the gold standard for confirmation and should be included in the finding as a sketch, not committed.

Report contract

Same spine as line-check so findings compose. Severity: critical (data loss, corruption, security-adjacent) / high (wrong results on common inputs, crashes) / medium (wrong on edge cases) / low (latent, needs unlikely conditions) / info. Effort is the fix cost: S / M / L.

# bug-hunt report: \x3Crepo> (\x3Cdate>)

## Verdict
Paragraph: overall correctness posture, the scariest confirmed bug.

## Scorecard
| Lens | Score (0-5) | Summary |

## Findings
### [SEVERITY] Short imperative title
- **Lens:** which lens found it
- **Where:** file:line
- **What:** the defect, concretely
- **Trigger:** the concrete input or sequence that hits it
- **Why it matters:** consequence
- **Fix:** specific action
- **Effort:** S / M / L

## Backlog
Numbered, leverage-sorted: `N. [SEVERITY/EFFORT] title (lens)`

## Not checked
Lenses or areas skipped and why; candidates that were refuted (count only).

Common mistakes

Reporting finder output without verification. Half of plausible candidates die under a skeptical read.
"This could be a problem if..." findings with no trigger. A bug without a triggering input is a hypothesis.
Treating style issues as bugs. Wrong formatting never corrupted data.
Stopping at the first confirmed bug in a file. Bugs cluster; finish the file.

安全使用建议

Install only if you want an agent to perform read-only bug-hunting over a repository. It may inspect broad areas of the codebase and suggest safe test runs, but the artifact does not ask to modify files, use credentials, or send data elsewhere.

能力评估

✓ Purpose & Capability

The stated purpose is defect finding, and the instructions are limited to reviewing code paths, checking tests or guards, and producing a structured bug report.

✓ Instruction Scope

The skill explicitly says bug finding and fixing are separate, requires verification before reporting, and only suggests running tests when safe and sandboxed.

✓ Install Mechanism

The artifact contains a single non-executable SKILL.md file with matching metadata; no scripts, package installs, hooks, or runtime payloads are present.

✓ Credentials

Reading repository code and recent git history is proportionate for a user-requested correctness sweep; no unrelated data access, network use, or credential handling is requested.

✓ Persistence & Privilege

No persistence, privilege escalation, background workers, credential/session use, file mutation, or external data transfer is instructed.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install bug-hunt
安装完成后，直接呼叫该 Skill 的名称或使用 /bug-hunt 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release – bug-hunt 1.0.0 - Provides a structured, adversarial methodology for defect finding in codebases. - Uses multiple "lenses" (logic, error handling, edge cases, concurrency, API misuse) to guide comprehensive bug sweeps. - Mandates that every potential bug is verified before reporting; only confirmed or unrefuted issues reach the report. - Delivers findings in a standardized markdown spine, including severity, effort, and reproduction details. - Clearly outlines common mistakes and enforces a strict separation between bug finding and fixing.

元数据

Slug bug-hunt

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题

Bug Hunt 是什么？

Use when asked to find bugs, hunt for correctness issues, sweep a codebase for defects, or verify a repo behaves as intended. Not for style or architecture r... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 49 次。

如何安装 Bug Hunt？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install bug-hunt」即可一键安装，无需额外配置。

Bug Hunt 是免费的吗？

是的，Bug Hunt 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Bug Hunt 支持哪些平台？

Bug Hunt 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Bug Hunt？

由 Solomon Neas（@solomonneas）开发并维护，当前版本 v1.0.0。