功能描述

Run Kilo CLI via background process for programmatic control.

使用说明 (SKILL.md)

IMPORTANT: You need to have Kilo CLI installed and configured so OpenClaw can use it without any issue.

npm install -g @kilocode/cli

If you want to automate pull requests to Github, then you also need to authenticate Github CLI in your project: https://github.com/cli/cli#installation

Coding Agent (background-first)

Name: Kilo CLI Coding Agent
Author: codewithnathan97

Use bash background mode for non-interactive coding work. For interactive coding sessions, use the tmux skill (always, except very simple one-shot prompts).

The Pattern: workdir + background

# Create temp space for chats/scratch work
SCRATCH=$(mktemp -d)

# Start agent in target directory ("little box" - only sees relevant files)
bash workdir:$SCRATCH background:true command:"\x3Cagent command>"
# Or for project work:
bash workdir:~/project/folder background:true command:"\x3Cagent command>"
# Returns sessionId for tracking

# Monitor progress
process action:log sessionId:XXX

# Check if done  
process action:poll sessionId:XXX

# Send input (if agent asks a question)
process action:write sessionId:XXX data:"y"

# Kill if needed
process action:kill sessionId:XXX

Why workdir matters: Agent wakes up in a focused directory, doesn't wander off reading unrelated files (like your soul.md 😅).

Kilo CLI

Building/Creating (Use Autonomous mode)

bash workdir:~/project background:true command:"kilo run --auto \"Build a snake game with dark theme\""

Reviewing PRs (vanilla, no flags)

⚠️ CRITICAL: Never review PRs in OpenClaw's own project folder!

Either use the project where the PR is submitted (if it's NOT ~/Projects/openclaw)
Or clone to a temp folder first

# Option 1: Review in the actual project (if NOT OpenClaw)
bash workdir:~/Projects/some-other-repo background:true command:"kilo run \"Review current branch against main branch\""

# Option 2: Clone to temp folder for safe review (REQUIRED for OpenClaw PRs!)
REVIEW_DIR=$(mktemp -d)
git clone https://github.com/openclaw/openclaw.git $REVIEW_DIR
cd $REVIEW_DIR && gh pr checkout 130
bash workdir:$REVIEW_DIR background:true command:"kilo run \"Review current branch against main branch\""
# Clean up after: rm -rf $REVIEW_DIR

# Option 3: Use git worktree (keeps main intact)
git worktree add /tmp/pr-130-review pr-130-branch
bash workdir:/tmp/pr-130-review background:true command:"kilo run \"Review current branch against main branch\""

Why? Checking out branches in the running OpenClaw repo can break the live instance!

Batch PR Reviews (parallel army!)

# Fetch all PR refs first
git fetch origin '+refs/pull/*/head:refs/remotes/origin/pr/*'

# Deploy the army - one Kilo CLI per PR!
bash workdir:~/project background:true command:"kilo run \"Review PR #86. git diff origin/main...origin/pr/86\""
bash workdir:~/project background:true command:"kilo run \"Review PR #87. git diff origin/main...origin/pr/87\""
bash workdir:~/project background:true command:"kilo run \"Review PR #95. git diff origin/main...origin/pr/95\""
# ... repeat for all PRs

# Monitor all
process action:list

# Get results and post to GitHub
process action:log sessionId:XXX
gh pr comment \x3CPR#> --body "\x3Creview content>"

Tips for PR Reviews

Fetch refs first: git fetch origin '+refs/pull/*/head:refs/remotes/origin/pr/*'
Use git diff: Tell Kilo CLI to use git diff origin/main...origin/pr/XX
Don't checkout: Multiple parallel reviews = don't let them change branches
Post results: Use gh pr comment to post reviews to GitHub

tmux (interactive sessions)

Use the tmux skill for interactive coding sessions (always, except very simple one-shot prompts). Prefer bash background mode for non-interactive runs.

Parallel Issue Fixing with git worktrees + tmux

For fixing multiple issues in parallel, use git worktrees (isolated branches) + tmux sessions:

# 1. Clone repo to temp location
cd /tmp && git clone [email protected]:user/repo.git repo-worktrees
cd repo-worktrees

# 2. Create worktrees for each issue (isolated branches!)
git worktree add -b fix/issue-78 /tmp/issue-78 main
git worktree add -b fix/issue-99 /tmp/issue-99 main

# 3. Set up tmux sessions
SOCKET="${TMPDIR:-/tmp}/kilo-fixes.sock"
tmux -S "$SOCKET" new-session -d -s fix-78
tmux -S "$SOCKET" new-session -d -s fix-99

# 4. Launch Kilo CLI in each (after npm install!)
tmux -S "$SOCKET" send-keys -t fix-78 "cd /tmp/issue-78 && npm install && kilo run 'Fix issue #78: \x3Cdescription>. Commit and push.'" Enter
tmux -S "$SOCKET" send-keys -t fix-99 "cd /tmp/issue-99 && npm install && kilo run 'Fix issue #99: \x3Cdescription>. Commit and push.'" Enter

# 5. Monitor progress
tmux -S "$SOCKET" capture-pane -p -t fix-78 -S -30
tmux -S "$SOCKET" capture-pane -p -t fix-99 -S -30

# 6. Check if done (prompt returned)
tmux -S "$SOCKET" capture-pane -p -t fix-78 -S -3 | grep -q "❯" && echo "Done!"

# 7. Create PRs after fixes
cd /tmp/issue-78 && git push -u origin fix/issue-78
gh pr create --repo user/repo --head fix/issue-78 --title "fix: ..." --body "..."

# 8. Cleanup
tmux -S "$SOCKET" kill-server
git worktree remove /tmp/issue-78
git worktree remove /tmp/issue-99

Why worktrees? Each Kilo CLI works in isolated branch, no conflicts. Can run 5+ parallel fixes!

Why tmux over bash background? Kilo CLI is interactive — needs TTY for proper output. tmux provides persistent sessions with full history capture.

⚠️ Rules

Respect tool choice — if user asks for Kilo CLI, use Kilo CLI. NEVER offer to build it yourself!
Be patient — don't kill sessions because they're "slow"
Monitor with process:log — check progress without interfering
--full-auto for building — auto-approves changes
vanilla for reviewing — no special flags needed
Parallel is OK — run many Kilo CLI processes at once for batch work
NEVER start Kilo CLI in ~/openclaw/ — it'll read your soul docs and get weird ideas about the org chart! Use the target project dir or /tmp for blank slate chats
NEVER checkout branches in ~/Projects/openclaw/ — that's the LIVE OpenClaw instance! Clone to /tmp or use git worktree for PR reviews

PR Template (The Razor Standard)

When submitting PRs to external repos, use this format for quality & maintainer-friendliness:

## Original Prompt
[Exact request/problem statement]

## What this does
[High-level description]

**Features:**
- [Key feature 1]
- [Key feature 2]

**Example usage:**
```bash
# Example
command example
```

## Feature intent (maintainer-friendly)
[Why useful, how it fits, workflows it enables]

## Prompt history (timestamped)
- YYYY-MM-DD HH:MM UTC: [Step 1]
- YYYY-MM-DD HH:MM UTC: [Step 2]

## How I tested
**Manual verification:**
1. [Test step] - Output: `[result]`
2. [Test step] - Result: [result]

**Files tested:**
- [Detail]
- [Edge cases]

## Session logs (implementation)
- [What was researched]
- [What was discovered]
- [Time spent]

## Implementation details
**New files:**
- `path/file.ts` - [description]

**Modified files:**
- `path/file.ts` - [change]

**Technical notes:**
- [Detail 1]
- [Detail 2]

---

Key principles:

Human-written description (no AI slop)
Feature intent for maintainers
Timestamped prompt history
Session logs if using Kilo CLI agent

安全使用建议

This skill is coherent with its purpose, but review and take precautions before enabling it: only provide a GitHub token scoped to the minimum required permissions (prefer a machine/service account token rather than your personal token), avoid using it against sensitive or org-wide repos, test first in a disposable repo/clone, and review the Kilo CLI package and any global npm installs yourself. Remember the skill's instructions will run git/gh commands that can commit, push, and post comments — grant privileges accordingly and rotate/revoke tokens if you stop using the skill.

功能分析

Type: OpenClaw Skill Name: kilocli-coding-agent Version: 0.0.9 The skill is classified as suspicious due to its broad permissions (`network`, `exec` in `claw.json`) and the use of powerful system tools (`kilo`, `git`, `gh`, `tmux`, `npm`) which, if misused by a malicious prompt or a compromised dependency, could lead to significant harm. It requires a `GITHUB_TOKEN` with extensive permissions. However, the `SKILL.md` instructions themselves do not exhibit malicious intent; they provide legitimate use cases for a coding agent and even include explicit security warnings (e.g., 'NEVER start Kilo CLI in ~/openclaw/') to prevent the agent from operating in sensitive directories. There is no evidence of intentional data exfiltration, backdoor installation, or obfuscation within the provided files.

能力评估

✓ Purpose & Capability

Name/description, required binaries (kilo, git, gh, tmux), and required env var (GITHUB_TOKEN) all align with a skill that runs Kilo CLI to review code, create PRs, and push changes. No unrelated credentials or binaries are requested.

✓ Instruction Scope

SKILL.md instructs running Kilo CLI in background or tmux, cloning repositories into temp directories, using git worktrees, running npm install, and using gh to post PR comments—all within the claimed domain. It explicitly warns not to operate on the OpenClaw repo directly. The instructions do direct the agent to create/push commits and post comments, which matches the need for a GitHub token.

✓ Install Mechanism

This is an instruction-only skill (no install spec). The document suggests installing @kilocode/cli via npm -g, which is a normal, explicit user action; nothing in the registry attempts to download or execute code automatically.

ℹ Credentials

Only GITHUB_TOKEN is required and it is the declared primary credential. That token will be used to create PRs, push commits, and post comments and therefore needs broad repo write privileges per the README/claw.json. This is proportionate to the skill's functionality but carries real risk if an over-privileged token is provided.

✓ Persistence & Privilege

Skill is not always:true and does not request persistent system modifications. It relies on the agent's ability to run background processes and use existing binaries, which is expected for this kind of automation.

版本历史

v0.0.9

kilocli-coding-agent 0.0.9 - Updated SKILL.md metadata formatting by fixing indentation and structure for "requires," "env," "bins," and "primaryEnv" fields. - No changes made to end-user usage or core functionality. - Version bump from 0.0.8 to 0.0.9.

v0.0.8

- Added README.md for additional documentation and onboarding. - Introduced claw.json configuration file. - Updated SKILL.md for version 0.0.8 (no substantive content changes identified in this version bump).

v0.0.7

- Bumped version to 0.0.7. - Updated SKILL.md metadata: removed the "openclaw" install instructions section. - No other user-facing or functional changes.

v0.0.6

kilocli-coding-agent v0.0.6 - Added install instructions to the skill metadata for improved installation support (`install` field). - No other changes to usage, instructions, or behavior.

v0.0.5

kilocli-coding-agent 0.0.5 - Added GITHUB_TOKEN as a required environment variable for authentication. - Updated metadata to declare GITHUB_TOKEN under env and set it as primaryEnv. - Changed build instructions to use autonomous mode (`--auto`) for Kilo CLI runs. - No changes to usage flow, documentation, or rules except clarifying flag usage for autonomous builds.

v0.0.4

kilocli-coding-agent 0.0.4 - Added version and metadata sections to SKILL.md, including required binaries (kilo, git, gh, tmux). - Updated project, tool, and path references from “clawdbot” to “openclaw” for clarity and accuracy. - Added instructions on authenticating the GitHub CLI for automated pull requests. - Strengthened warnings throughout documentation to prevent unsafe reviews or branch checkouts in the live OpenClaw instance. - No code or logic changes; all updates are documentation only.

v0.0.3

Edit Name

v0.0.2

No user-facing changes in this version. - No file changes detected. - Functionality and documentation remain unchanged from the previous release.

v0.0.1

First upload

v0.1.0

- Initial release of kilocli-coding-agent. - Enables running Kilo CLI via background processes for automated, programmatic control. - Provides best-practice workflows for PR/code review, building, and parallel issue fixing using bash background jobs and tmux sessions. - Documents safety rules to avoid conflicts with live repos and ensure stable multi-process operation. - Includes detailed usage patterns and PR template recommendations for maintainability.

v1.0.0

kilocli-coding-agent 1.0.0 - Initial release for integrating Kilo CLI via background processes and workdir isolation. - Provides detailed workflows for background (non-interactive) and tmux (interactive) coding sessions. - Includes best practices for safe PR review, batch review automation, and parallel development using git worktrees. - Documents strict rules to prevent accidental disruption of live Clawdbot instances. - Supplies a comprehensive PR template (The Razor Standard) for high-quality contributions.

元数据

Slug kilocli-coding-agent

版本 0.0.9

许可证 —

累计安装 4

当前安装数 2

历史版本数 11

常见问题

Kilo CLI Coding Agent 是什么？

Run Kilo CLI via background process for programmatic control. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 2370 次。

如何安装 Kilo CLI Coding Agent？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install kilocli-coding-agent」即可一键安装，无需额外配置。

Kilo CLI Coding Agent 是免费的吗？

是的，Kilo CLI Coding Agent 完全免费（开源免费），可自由下载、安装和使用。

Kilo CLI Coding Agent 支持哪些平台？

Kilo CLI Coding Agent 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Kilo CLI Coding Agent？

由 Code With Nathan（@codewithnathan97）开发并维护，当前版本 v0.0.9。

Kilo CLI Coding Agent