Flutter Updater

Name: Flutter Updater
Author: jaekyung-you

功能描述

Keep Flutter/Dart projects automatically up-to-date. Detects new Flutter/Dart SDK releases, updates pubspec.yaml dependencies with safe breaking-change handl...

使用说明 (SKILL.md)

Preamble (run first, always)

# Self-update check (silent if up to date)
_SKILL_DIR="$(dirname "$(which flutter-updater-config 2>/dev/null)" 2>/dev/null || echo "$HOME/.claude/skills/flutter-updater/bin")"
_SKILL_BASE="$(dirname "$_SKILL_DIR" 2>/dev/null || echo "$HOME/.claude/skills/flutter-updater")"
_UPD=$("$_SKILL_BASE/bin/flutter-updater-version-check" 2>/dev/null || true)
[ -n "$_UPD" ] && echo "$_UPD" || true

# Load config
_INTERVAL=$(   "$_SKILL_BASE/bin/flutter-updater-config" get check_interval_hours 2>/dev/null || echo "12")
_IGNORED=$(    "$_SKILL_BASE/bin/flutter-updater-config" get ignored_packages      2>/dev/null || echo "")
_AUTO_SAFE=$(  "$_SKILL_BASE/bin/flutter-updater-config" get auto_apply_safe       2>/dev/null || echo "true")
_CHANNEL=$(    "$_SKILL_BASE/bin/flutter-updater-config" get track_channel         2>/dev/null || echo "stable")
echo "CONFIG: interval=${_INTERVAL}h channel=${_CHANNEL} auto_safe=${_AUTO_SAFE}"
[ -n "$_IGNORED" ] && echo "CONFIG: ignored_packages=${_IGNORED}"

# Project state
_LAST_CHECK=$("$_SKILL_BASE/bin/flutter-updater-state" get-last-check 2>/dev/null || echo "")
_SLUG=$(      "$_SKILL_BASE/bin/flutter-updater-state" slug 2>/dev/null || echo "unknown")
echo "PROJECT: $_SLUG"
[ -n "$_LAST_CHECK" ] && echo "LAST_CHECK: $_LAST_CHECK" || echo "LAST_CHECK: never"

# Detect build targets
_TARGETS=$("$_SKILL_BASE/bin/flutter-updater-detect-targets" 2>/dev/null || echo "")
echo "TARGETS: ${_TARGETS:-none}"

# Parse flags
_FLAG="${1:-}"
echo "FLAG: ${_FLAG:-none}"

After running the preamble:

Store $_SKILL_BASE for use in later phases.
Store $_IGNORED, $_AUTO_SAFE, $_CHANNEL, $_TARGETS, $_FLAG.
If $_LAST_CHECK is within $_INTERVAL hours AND $_FLAG is empty, ask the user: "Already checked $_INTERVALh ago. Run again?" before proceeding.

PHASE 0: Environment Validation

# Verify Flutter project
[ -f pubspec.yaml ] || { echo "ERROR: No pubspec.yaml found. Run from Flutter/Dart project root."; exit 1; }

# Run dart pub outdated --json (used in Phase 2)
dart pub outdated --json 2>/dev/null

If pubspec.yaml is missing, stop and tell the user. Do not proceed.

PHASE 1: Flutter SDK Update Check

Skip if $_FLAG is --deps-only or --qa-only.

"$_SKILL_BASE/bin/flutter-updater-sdk-check" "$_CHANNEL" 2>&1

Parse output lines:

CURRENT:\x3Cversion> → current Flutter version
LATEST:\x3Cversion> → latest available
UPDATE_AVAILABLE → upgrade is needed
UP_TO_DATE → skip this phase, note "Flutter SDK is current (vX.Y.Z)"
ERROR:... → warn user, skip phase

If UPDATE_AVAILABLE:

Use AskUserQuestion: "Flutter SDK update: vCURRENT → vLATEST. Upgrade now?" Options: a) Yes, upgrade b) Skip

If user chooses (a):

flutter upgrade

Then re-run the sdk-check to confirm new version.

PHASE 2: Dependency Classification

Skip if $_FLAG is --sdk-only or --qa-only.

Run the classifier using the dart pub outdated --json output from Phase 0:

echo "\x3COUTDATED_JSON_FROM_PHASE_0>" | "$_SKILL_BASE/bin/flutter-updater-classify" pubspec.yaml "$_IGNORED"

Parse each output line:

SAFE:\x3Cname>:\x3Ccurrent>:\x3Ctarget> → safe update list
BREAKING:\x3Cname>:\x3Ccurrent>:\x3Clatest> → breaking update list
UP_TO_DATE:\x3Cname>:\x3Cversion> → already current
SKIP_PATH:\x3Cname> / SKIP_GIT:\x3Cname> / SKIP_SDK:\x3Cname> / SKIP_IGNORED:\x3Cname>:\x3Cv> → skip

Print a summary table to the user:

Dependency Analysis
  Safe updates    (N): package_a 1.0→1.2, package_b 3.1→3.1.4
  Breaking updates(N): package_c 0.13→1.2, package_d 6.0→7.0
  Up to date      (N): ...
  Skipped         (N): path/git/sdk/ignored

If there are no updates at all (all UP_TO_DATE or SKIP), jump directly to Phase 5 (dart fix) unless --deps-only.

PHASE 3: Safe Updates

Skip if $_FLAG is --sdk-only or --qa-only. Skip if no SAFE packages were found.

If $_AUTO_SAFE is true, apply automatically. If $_AUTO_SAFE is false, ask the user first.

dart pub upgrade 2>&1

After applying, run:

dart analyze 2>&1 | head -60

If dart analyze shows errors after safe updates, read each error and fix with Edit tool. These should be minor issues (API changes within the same major version).

PHASE 4: Breaking Change Updates (one package at a time)

Skip if $_FLAG is --sdk-only or --qa-only. Skip if no BREAKING packages were found.

For each BREAKING package, do the following in sequence:

4a — Backup (once before first breaking update)

cp pubspec.yaml pubspec.yaml.fu_bak
cp pubspec.lock pubspec.lock.fu_bak

4b — Fetch Changelog

"$_SKILL_BASE/bin/flutter-updater-changelog" "\x3CPACKAGE_NAME>" "\x3CTARGET_VERSION>" 2>&1

Read the changelog output. Identify:

Removed classes or methods (exact names)
Renamed classes or methods (old → new)
Changed constructors or method signatures
Any migration guide mentioned

4c — Scan Codebase for Affected APIs

Use Grep to find every usage of the removed/changed APIs in lib/, test/, bin/:

grep -rn "OldClassName\|removedMethod\|changedSignature" lib/ test/ bin/ 2>/dev/null

Build a file:line map of what needs changing.

4d — Confirm with User

Use AskUserQuestion: "PACKAGE_NAME vCURRENT → vLATEST (Breaking)

Changelog summary:

[key breaking changes from 4b]

Affected in your code:

lib/foo.dart:42 — OldClassName

lib/bar.dart:17 — removedMethod()

Attempt automatic migration?"

Options: a) Yes, migrate b) Skip this package

If user skips → record SKIP for this package, continue to next.

4e — Apply Update

dart pub upgrade --major-versions "\x3CPACKAGE_NAME>" 2>&1

If this fails (non-zero exit), do NOT modify pubspec.yaml. Record as failed, skip to next package.

4f — Fix Compilation Errors (up to 3 rounds)

dart analyze 2>&1

For each error:

Read the affected file with Read tool.
Cross-reference with changelog from 4b to determine the correct replacement.
Apply fix with Edit tool.
Re-run dart analyze. Repeat up to 3 times.

Common fix patterns:

Undefined class 'OldName' → rename to NewName everywhere (use Grep to find all uses, Edit to replace)
Method 'removedMethod' not found → replace with new API equivalent
Too many positional arguments → update call signature
The named parameter 'oldParam' isn't defined → rename or remove parameter

4g — Rollback if Unfixable

If errors remain after 3 fix rounds:

Read pubspec.yaml.fu_bak, find the original constraint for this package, and restore just that line in pubspec.yaml using Edit tool. Then:

dart pub get 2>&1

Tell the user:

"Rolled back PACKAGE_NAME to vCURRENT. Auto-migration failed after 3 attempts.

Manual migration needed:

[specific breaking APIs that still need fixing]

[official migration guide URL if found in changelog]

Affected files: [list]"

4h — Continue to Next Breaking Package

After all breaking packages: clean up backups.

rm -f pubspec.yaml.fu_bak pubspec.lock.fu_bak

PHASE 5: dart fix

Skip if $_FLAG is --sdk-only or --qa-only.

dart fix --dry-run 2>&1

If fixes are available:

Use AskUserQuestion: "dart fix can repair N issues. Apply?" Options: a) Yes b) Skip

If (a):

dart fix --apply 2>&1

Run dart analyze once more to confirm no regressions.

PHASE 6: QA

Skip if $_FLAG is --sdk-only or --deps-only.

6a — Static Analysis

flutter analyze 2>&1

If errors: read each, attempt Edit fixes, re-run (up to 2 rounds). Warnings are acceptable — note them but do not block.

6b — Tests

flutter test 2>&1

If tests fail:

If failure is directly caused by a dependency API change (verified against changelog): read test file, update to new API, re-run once.
If failure is a genuine regression (unrelated to update): record as failed, do NOT silently fix test assertions.

6c — Build Verification

Use $_TARGETS from preamble. Pick the first available in order: android → web → macos → linux → ios → windows.

Target	Command
android	`flutter build apk --debug 2>&1 \| tail -30`
web	`flutter build web 2>&1 \| tail -30`
macos	`flutter build macos --debug 2>&1 \| tail -30`
linux	`flutter build linux --debug 2>&1 \| tail -30`
ios	`flutter build ios --debug --no-codesign 2>&1 \| tail -30`
windows	`flutter build windows --debug 2>&1 \| tail -30`
dart_only	`dart compile exe bin/main.dart -o /tmp/flutter_updater_build_check 2>&1 \| tail -10`

If build fails: apply same fix-analyze loop as 6a (up to 2 rounds). If still failing: record in report.

PHASE 7: Update State & Save Report

# Record this run in project state
"$_SKILL_BASE/bin/flutter-updater-state" set-last-check

"$_SKILL_BASE/bin/flutter-updater-state" log-update '{
  "sdk_updated": "\x3CNEW_SDK_VERSION_OR_EMPTY>",
  "updated": ["\x3Clist of successfully updated packages>"],
  "skipped": ["\x3Clist of rolled-back packages>"],
  "dart_fix_applied": true_or_false,
  "qa_analyze": "pass|fail",
  "qa_test": "pass|fail|N/N",
  "qa_build": "pass|fail|skipped"
}'

7a — Compose the Report

Compose the full Markdown report (see template below) and write it to a temp file:

cat > /tmp/flutter_updater_report_$$.md \x3C\x3C 'REPORT'
\x3Cfull markdown report content>
REPORT

7b — Save Report to Project

Determine the current Flutter version (use the post-update version if SDK was upgraded).

_FLUTTER_VER=$(flutter --version --machine 2>/dev/null | python3 -c "import json,sys; print(json.load(sys.stdin).get('frameworkVersion','unknown'))" 2>/dev/null || echo "unknown")

# Default save location: .flutter_updater/reports/ inside the project
# User can override by setting FLUTTER_UPDATER_REPORT_DIR in their shell
_REPORT_DIR="${FLUTTER_UPDATER_REPORT_DIR:-.flutter_updater/reports}"

"$_SKILL_BASE/bin/flutter-updater-save-report" "$_FLUTTER_VER" "/tmp/flutter_updater_report_$$.md" "$_REPORT_DIR"

After saving, tell the user the exact file path where the report was saved. Also print the report contents to the conversation.

Clean up:

rm -f /tmp/flutter_updater_report_$$.md

Report Template

The report file must follow this structure:

# Flutter Update — v\x3CFLUTTER_VERSION> (\x3CYYYY-MM-DD>)

Project: \x3Cproject name from pubspec.yaml>
Run at: \x3CISO timestamp>

---

## Flutter SDK
- Before: v\x3COLD>  →  After: v\x3CNEW>  (or: Already current / Skipped)

## Dependency Updates

| Package | Before | After | Type | Result |
|---------|--------|-------|------|--------|
| http | 0.13.5 | 1.2.2 | Breaking | ✅ Updated + auto-fixed (3 files) |
| provider | 6.1.2 | 6.1.4 | Safe | ✅ Updated |
| dio | 4.0.6 | 5.4.0 | Breaking | ⚠️ Rolled back — see below |
| path | 1.8.3 | 1.8.3 | — | ⏭ Up to date |

## Code Changes Applied

### Auto-fixed (dart fix)
- N issues fixed  (or: No fixes needed / Skipped)

### Breaking Change Migrations
For each auto-fixed breaking package, list:
- **\x3Cpackage_name>** v\x3Cold> → v\x3Cnew>
  - Changed: `OldClass` → `NewClass` in lib/foo.dart:42, lib/bar.dart:17
  - Changed: `oldMethod()` → `newMethod()` in lib/service.dart:88

## QA Results

| Check | Result | Details |
|-------|--------|---------|
| flutter analyze | ✅ Pass | 0 errors, 2 warnings |
| flutter test | ✅ Pass | 47/47 tests passed |
| flutter build (android) | ✅ Pass | Build succeeded |

## Manual Action Required

### \x3Cpackage_name> — Could Not Auto-Migrate
- **Version**: v\x3Cold> → v\x3Clatest> (rolled back to v\x3Cold>)
- **Breaking change**: `Options` class removed; use `RequestOptions` instead
- **Your affected files**:
  - `lib/api/client.dart` lines 34, 89
  - `test/api_test.dart` line 12
- **Migration guide**: \x3CURL if found in changelog>

---
*Generated by flutter-updater v1.0.0*

Error Recovery Rules

Network failures (GitHub, pub.dev): Retry once silently. If still failing, skip that step and note it in the report. Never abort the full run.
dart pub upgrade resolution failure: Do not touch pubspec.yaml. Report conflict and skip that package.
Fix loop cap: Max 3 rounds of analyze → fix per package. After 3, rollback.
Flaky test: Re-run flutter test once. If it fails again, record as failed.
Unrelated build failure: Report but do not attempt to fix issues not caused by the update.
git: Do NOT run any git commands (stash, commit, checkout). Use only file backup/restore strategy.

安全使用建议

This skill's behavior is plausible for an updater, but there is a critical inconsistency: SKILL.md expects several helper executables under a bin/ path (flutter-updater-config, -classify, -changelog, etc.) yet the package contains only documentation and no install steps or binaries. Before installing or running it, do the following: 1) Ask the author how those helper binaries are installed and request their source code or an installer; do not run the skill until you can verify them. 2) Inspect any flutter-updater-* binaries that appear under $HOME/.claude/skills/flutter-updater/bin or in PATH — treat them as executable third-party code. 3) Run the skill on a clean branch or a copy of your repo (commit/stash changes first), or in CI on a non-critical clone, because the skill will modify pubspec.yaml, run upgrades, and perform automated edits without using git to save/commit changes. 4) If you decide to try it, start with conservative flags (--sdk-only or --deps-only) and with auto-apply disabled so you can review changes manually. 5) If you cannot obtain the helper binaries' source or a trustworthy install mechanism, avoid running this skill because the missing install spec leaves room for either failure or unexpected code execution.

功能分析

Type: OpenClaw Skill Name: flutter-updater Version: 1.0.0 The flutter-updater skill is a comprehensive automation tool for maintaining Flutter and Dart projects. It handles SDK upgrades, dependency classification (safe vs. breaking), automated code migration using the Edit tool, and QA verification (analyze, test, build). The logic in SKILL.md includes appropriate safeguards such as user confirmation for major changes, per-package rollback mechanisms if auto-fixes fail, and restricted file access limited to the project directory. No indicators of data exfiltration, unauthorized persistence, or malicious prompt injection were found.

能力评估

ℹ Purpose & Capability

The described purpose (detecting Flutter/Dart updates, classifying safe vs breaking changes, applying fixes, and running QA) is coherent with the described commands (dart/pub, flutter analyze/test/build, grep, edits). However the SKILL.md repeatedly invokes helper programs (e.g. flutter-updater-config, flutter-updater-version-check, flutter-updater-classify, flutter-updater-changelog, flutter-updater-detect-targets, flutter-updater-state) expected under $_SKILL_BASE/bin — none of these helper binaries or an install mechanism are present in the package. That mismatch is unexplained and disproportionate to an instruction-only skill.

⚠ Instruction Scope

The instructions perform file reads/writes and code edits (cp backups, modify pubspec.yaml, run dart fix --apply, run flutter upgrade), which are expected for this purpose but require caution. They also rely on executing the helper binaries from a skill directory (or $HOME/.claude/skills/...) and use WebFetch to fetch changelogs. The instructions explicitly say they will not run git commands (so they will modify files without committing/stashing), which increases the risk of unexpected local changes. The directive to auto-fix compilation errors via Edit gives the skill broad discretion to change source code.

⚠ Install Mechanism

There is no install spec and no included helper binaries, yet the runtime assumes multiple executables exist under the skill's bin directory. This is inconsistent: either the binaries are missing (skill will fail) or the skill expects to run binaries from an external/previous installation (which could be malicious if those files are not from a trusted source). Instruction-only skills should not depend on unbundled executables without documenting how they get installed/trusted.

✓ Credentials

The skill declares no required environment variables or credentials and the described network activity (fetching release/changelog data from GitHub or package repos) is consistent with that. No access to unrelated credentials is requested. That said, the README mentions using the GitHub API; if private repos or rate-limited access are needed, credentials may be required but none are declared.

ℹ Persistence & Privilege

The skill does not request 'always' presence and does not appear to modify other skills or global agent settings. It will, however, write backups and modify project files in-place and may apply code changes automatically depending on configuration. Because it does not run git commands, these modifications can leave working-tree changes; the user should run it from a committed branch or backup first. The skill can be invoked autonomously (platform default), which expands blast radius if the missing helper binaries are later added maliciously — combine with other concerns.

版本历史

v1.0.0

Initial release: auto-update Flutter/Dart projects with breaking-change handling and QA

元数据

Slug flutter-updater

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题

Flutter Updater 是什么？

Keep Flutter/Dart projects automatically up-to-date. Detects new Flutter/Dart SDK releases, updates pubspec.yaml dependencies with safe breaking-change handl... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 68 次。

如何安装 Flutter Updater？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install flutter-updater」即可一键安装，无需额外配置。

Flutter Updater 是免费的吗？

是的，Flutter Updater 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Flutter Updater 支持哪些平台？

Flutter Updater 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Flutter Updater？

由 JaekyungYou（@jaekyung-you）开发并维护，当前版本 v1.0.0。