功能描述

Use for every task involving this project. Covers running Ganglion, its CLI commands, HTTP bridge API, pipeline execution, knowledge queries, configuration,...

使用说明 (SKILL.md)

Ganglion — Operator's Manual

Name: Codebase Guide
Author: tensorlink-dev

Ganglion is a domain-specific execution engine for Bittensor subnet mining. It provides a pipeline framework for orchestrating autonomous mining agents that search for optimal model configurations. It exposes a CLI, an HTTP bridge API, and a Python library. Ganglion is search infrastructure — it doesn't know what a good model looks like, it knows how to search for one.

Quick Reference

# Scaffold a new project
ganglion init ./my-subnet --subnet sn9 --netuid 9

# Check state (local mode)
ganglion status ./my-subnet
ganglion tools ./my-subnet
ganglion agents ./my-subnet
ganglion knowledge ./my-subnet --capability training --max-entries 10
ganglion pipeline ./my-subnet

# Run (local mode)
ganglion run ./my-subnet
ganglion run ./my-subnet --stage plan
ganglion run ./my-subnet --overrides '{"target_metric":"accuracy"}'

# Start HTTP bridge (remote mode)
ganglion serve ./my-subnet --bot-id alpha --port 8899

# Check state (remote mode)
curl -s "$GANGLION_URL/v1/status" | jq .data

Mode Detection

Ganglion supports two modes. Always check which mode applies before running commands.

Local mode: No GANGLION_URL set, or GANGLION_PROJECT is set. Use ganglion \x3Ccommand> \x3Cproject_dir> directly.
Remote mode: GANGLION_URL is set. Use curl against the HTTP bridge.

if [ -n "$GANGLION_PROJECT" ] || [ -z "$GANGLION_URL" ]; then
  echo "local"
else
  echo "remote"
fi

Response Format

All HTTP bridge endpoints (except health probes) return responses in a standard envelope:

Success: {"data": \x3Cpayload>} — use jq .data to extract
Error: {"detail": {"error": {"code": "ERROR_CODE", "message": "..."}}}

Health probes (/healthz, /readyz) return raw JSON without the envelope.

Interactive API docs: $GANGLION_URL/v1/docs (Swagger UI).

Note: Unversioned routes (e.g. /status) still work but are deprecated. Always use /v1/.

How to Run

Prerequisites: Python >= 3.11, OPENAI_API_KEY set (used by the LLM runtime).

Install: pip install ganglion

Scaffold a project:

ganglion init ./my-subnet --subnet sn9 --netuid 9

This creates config.py, tools/, agents/, and skill/ in the target directory.

Start in local mode:

export GANGLION_PROJECT=./my-subnet
ganglion status $GANGLION_PROJECT

Start in remote mode:

ganglion serve ./my-subnet --bot-id alpha --port 8899
export GANGLION_URL=http://127.0.0.1:8899

The project directory must contain a config.py that defines subnet_config (SubnetConfig) and pipeline (PipelineDef). See {baseDir}/references/configuration.md for full config details.

Key Features

Observe State

Query the current framework state — registered tools, agents, pipeline definition, knowledge, metrics, and run history. Local mode uses CLI commands; remote mode uses GET endpoints.

Full reference: {baseDir}/references/commands.md

Execute Pipelines

Run the full pipeline or a single stage. The orchestrator executes stages in dependency order, applies retry policies, injects accumulated knowledge into agent prompts, and records outcomes.

# Local
ganglion run ./my-subnet
ganglion run ./my-subnet --stage plan

# Remote
curl -s -X POST "$GANGLION_URL/v1/run/pipeline" -H "Content-Type: application/json" -d '{}' | jq .data
curl -s -X POST "$GANGLION_URL/v1/run/stage/plan" -H "Content-Type: application/json" -d '{}' | jq .data

Mutate at Runtime (Remote Only)

Register new tools, agents, and components; patch the pipeline; swap retry policies; update prompts. All mutations are validated, audited, and reversible.

# Register a tool
curl -s -X POST "$GANGLION_URL/v1/tools" -H "Content-Type: application/json" \
  -d '{"name":"my_tool","code":"\x3Ccode>","category":"training"}' | jq .data

# Patch pipeline
curl -s -X PATCH "$GANGLION_URL/v1/pipeline" -H "Content-Type: application/json" \
  -d '{"operations":[{"op":"add_stage","stage":{"name":"validate","agent":"Validator","depends_on":["train"]}}]}' | jq .data

Pipeline operations: add_stage, remove_stage, update_stage. See {baseDir}/references/commands.md for all mutation endpoints.

Knowledge Store

Cross-run strategic memory that compounds over time. Records patterns (what worked) and antipatterns (what failed), then automatically injects relevant history into agent prompts. Knowledge is queried by capability and filtered by bot_id for multi-bot setups.

# Local
ganglion knowledge ./my-subnet --bot-id alpha --capability training

# Remote
curl -s "$GANGLION_URL/v1/knowledge?capability=training&max_entries=10" | jq

Rollback

Undo any mutation. Every mutation is recorded in an audit log with rollback data.

curl -s -X POST "$GANGLION_URL/v1/rollback/last" | jq
curl -s -X POST "$GANGLION_URL/v1/rollback/0" | jq    # undo ALL mutations

Multi-Bot Workflows

Multiple OpenClaw sessions share a knowledge pool via --bot-id. Each bot's discoveries flow into the shared pool. Cooperation emerges from shared knowledge, not explicit coordination.

# Two local sessions
ganglion run ./my-subnet --bot-id alpha
ganglion run ./my-subnet --bot-id beta

# Two remote servers
ganglion serve ./my-subnet --bot-id alpha --port 8899
ganglion serve ./my-subnet --bot-id beta  --port 8900

MCP Integration

Connect to external MCP servers to add tools to the agent's repertoire at runtime. Tools from MCP servers appear as regular Ganglion tools with a prefix.

# Static: add to config.py
# from ganglion.mcp.config import MCPClientConfig
# mcp_clients = [MCPClientConfig(name="weather", transport="stdio", command=["python", "-m", "weather_server"])]

# Dynamic: add at runtime via API
curl -s -X POST "$GANGLION_URL/v1/mcp/servers" -H "Content-Type: application/json" \
  -d '{"name":"weather","transport":"stdio","command":["python","-m","weather_server"]}' | jq .data

# Check connected MCP servers
curl -s "$GANGLION_URL/v1/mcp" | jq .data

# Disconnect
curl -s -X DELETE "$GANGLION_URL/v1/mcp/servers/weather" | jq .data

# Expose Ganglion tools as MCP server (for Claude Desktop etc.)
ganglion mcp-serve ./my-subnet --transport stdio

Common Workflows

See {baseDir}/examples/common-workflows.md for full step-by-step guides.

First run: ganglion init → edit config.py → ganglion run
Iterative mining: check status → review knowledge → run pipeline → check metrics → repeat
Dynamic mutation: observe tools/agents → register new tool via API → patch pipeline → run
Multi-bot setup: start multiple servers with different --bot-id values on the same project
MCP integration: connect external tool servers → tools appear in registry → agents can use them

When Things Go Wrong

Symptom	Likely Cause	Fix
`FileNotFoundError: No config.py`	Wrong project path	Verify path contains `config.py`
`OPENAI_API_KEY` errors	Missing or invalid API key	`export OPENAI_API_KEY=sk-...`
`ConcurrentMutationError`	Mutating during a pipeline run	Wait for the run to finish
`PipelineValidationError`	Invalid pipeline DAG (cycles, missing deps)	Check `ganglion pipeline` output
Agent stuck / max turns reached	Agent cannot make progress	Review knowledge, swap retry policy, adjust prompts

Full troubleshooting: {baseDir}/references/troubleshooting.md

Retry Policies

Four built-in policies control how stages retry on failure:

NoRetry — single attempt
FixedRetry — retry N times (default: 3)
EscalatingRetry — increase temperature per attempt, optional stall detection
ModelEscalationRetry — climb a model cost ladder (cheap → expensive)

Three presets: SN50_PRESET (escalating + stall detection), SIMPLE_PRESET (fixed), AGGRESSIVE_PRESET (model escalation).

Additional Resources

Full CLI & API reference: {baseDir}/references/commands.md
Configuration guide: {baseDir}/references/configuration.md
Operational procedures: {baseDir}/references/operations.md
Troubleshooting: {baseDir}/references/troubleshooting.md
Workflow examples: {baseDir}/examples/common-workflows.md
Sample API requests: {baseDir}/examples/sample-requests.md
Health check script: {baseDir}/scripts/healthcheck.sh

安全使用建议

What to consider before installing: - The skill is coherent with its purpose: it documents how to run and administer Ganglion and legitimately needs python3, the ganglion CLI, and an OpenAI API key (used by LLM-backed agents). - The package documents high-impact mutation APIs (POST /v1/tools, POST /v1/agents, PATCH /v1/pipeline, PUT /v1/policies) and includes examples that upload executable Python code. Those are valid admin operations for Ganglion but can change runtime behavior and introduce code that executes inside the service — only grant access in trusted environments. - The declared always: true flag is the main red flag: it force-includes the skill in every agent run. If you don't want this skill enabled by default for unrelated tasks, remove or change always: true so it must be explicitly enabled. - Protect your OPENAI_API_KEY: this skill requires it and Ganglion’s LLM client will read it. Prefer using a key scoped/rotated for this purpose or run the service in an isolated environment. - If you plan to run the HTTP bridge, restrict binding/ports and network access (e.g., bind to localhost, use firewall rules) to avoid exposing mutation endpoints to untrusted networks. - Audit the included script (scripts/healthcheck.sh) and any tools/agents you register before running them. Consider running initial tests in an isolated VM or container. - If you need higher assurance, ask the publisher for provenance (source code repository, signed releases) or run a manual review of the ganglion package and any dynamically uploaded code before use.

功能分析

Type: OpenClaw Skill Name: codebase-guide Version: 1.0.0 The skill bundle documents and instructs the AI agent on how to interact with the OpenClaw AgentSkills system, which exposes several high-risk capabilities. Specifically, the `SKILL.md` and `references/commands.md` files detail API endpoints (`POST /v1/tools`, `POST /v1/agents`) that allow registering arbitrary Python code, and an endpoint (`POST /v1/mcp/servers`) that allows executing arbitrary shell commands via a `command` array. Additionally, the `GET /v1/source/{path}` endpoint permits reading any file within the project directory, posing an information disclosure risk. While the skill bundle itself does not contain malicious payloads or explicit prompt injection attempts to subvert the agent, it describes and enables interactions with a system that has significant remote code execution and information disclosure vulnerabilities if not properly secured or if exposed to untrusted input.

能力评估

✓ Purpose & Capability

The skill is a codebase/operator guide for Ganglion and requires python3 and the ganglion CLI plus OPENAI_API_KEY — all of which are coherent with running and operating Ganglion (LLM-backed agents and a CLI/HTTP bridge). The requested binaries and env var are expected for the documented workflows.

ℹ Instruction Scope

SKILL.md stays within the domain of operating Ganglion: scaffolding projects, running pipelines, starting the HTTP bridge, querying state, and mutating pipeline/tools/prompts via the bridge. However, it explicitly documents high-impact mutation operations (POST /v1/tools, POST /v1/agents, PATCH /v1/pipeline, PUT /v1/policies) and shows examples of uploading code — capabilities that can modify runtime behavior and write executable code into the project.

✓ Install Mechanism

No install spec — instruction-only with included documentation and a healthcheck script. Nothing in the package pulls executable code from external URLs or installs third-party packages automatically. Risk from install mechanism is low.

ℹ Credentials

Only OPENAI_API_KEY is declared as required and that is justified by the docs (Ganglion uses an LLM client). OPENAI_API_KEY is sensitive; the docs also reference GANGLION_URL and GANGLION_PROJECT (mode detection) though those aren't declared as required env vars. Overall env requirements are minimal and explainable, but the single declared secret is high-value.

⚠ Persistence & Privilege

The skill metadata sets always: true, which force-includes the skill in all agent runs. Combined with the documented ability to register tools/agents and patch the pipeline (i.e., write and run code in the project), this gives a larger blast radius if the skill is invoked autonomously or if a malicious prompt triggers mutations. The SKILL.md itself doesn't justify needing always: true for all agents beyond 'use for every task involving this project'; consider whether on-demand inclusion would be safer.

版本历史

v1.0.0

Initial release of the codebase-guide skill for Ganglion operator workflows. - Provides comprehensive instructions for running Ganglion, including local and remote usage. - Documents CLI commands, HTTP bridge API, project scaffolding, configuration, and common workflows. - Explains knowledge store mechanics, runtime mutation, rollback features, and multi-bot workflows. - Details how to integrate MCP servers to extend agent toolkits at runtime. - Includes troubleshooting section for common operational issues.

元数据

Slug codebase-guide

版本 1.0.0

许可证 —

累计安装 0

当前安装数 0

历史版本数 1

常见问题

Codebase Guide 是什么？

Use for every task involving this project. Covers running Ganglion, its CLI commands, HTTP bridge API, pipeline execution, knowledge queries, configuration,... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 358 次。

如何安装 Codebase Guide？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install codebase-guide」即可一键安装，无需额外配置。

Codebase Guide 是免费的吗？

是的，Codebase Guide 完全免费（开源免费），可自由下载、安装和使用。

Codebase Guide 支持哪些平台？

Codebase Guide 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Codebase Guide？

由 tensorlink-dev（@tensorlink-dev）开发并维护，当前版本 v1.0.0。

Codebase Guide