← 返回 Skills 市场
359
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install mini-swe-agent
功能描述
Autonomously run complex software engineering tasks like bug fixes or feature implementation using the mini-swe-agent CLI with full codebase edits.
安全使用建议
This skill tells the agent to run an unknown 'mini' CLI with an explicit autonomous flag ( --yolo ) to edit your codebase. Before installing or invoking it: 1) Do not run or install any 'mini' binary unless you can verify its source (official repo/releases, checksums, or vendor). 2) Ask the skill author for the 'mini' binary's provenance and inspect its code or release artifacts. 3) Require the skill to declare required binaries and any credentials it needs, and to limit scope (specific repo/paths/branches). 4) If you must test, run it in an isolated sandbox or disposable VM, on a cloned repo/branch with backups and no push permissions. 5) Prefer a skill that performs edits via transparent commands (git diffs, PRs) and explicit user confirmation rather than an opaque autonomous CLI. These steps will reduce risk of destructive edits or data exfiltration.
功能分析
Type: OpenClaw Skill
Name: mini-swe-agent
Version: 1.0.0
The skill instructs the OpenClaw agent to execute an external, undefined command named `mini` using a bash tool. The `SKILL.md` explicitly mandates the use of the `--yolo` flag, ensuring this command runs autonomously without user intervention. While the skill itself does not contain malicious code, its reliance on an external, unverified executable combined with autonomous execution creates a significant vulnerability. If a malicious `mini` binary were present in the agent's environment (e.g., via PATH hijacking or a compromised installation), this skill would facilitate its execution, posing a high risk of arbitrary code execution or system compromise.
能力评估
Purpose & Capability
The SKILL.md instructs the agent to run a CLI named 'mini' to perform end-to-end codebase edits, but the registry metadata lists no required binaries, no install steps, and no homepage/source. Asking to run an unproven external tool is not coherent with the 'instruction-only' metadata and provides no justification for how the 'mini' CLI will be obtained or trusted.
Instruction Scope
Runtime instructions explicitly require always using the '--yolo' flag so the tool runs autonomously and performs full codebase edits. There are no safety checks, sandboxing, explicit file/path limits, or requirements for user confirmation. The instructions encourage running the tool against arbitrary project paths (e.g., /src/auth.py), which could result in destructive edits or exfiltration if the external CLI is malicious.
Install Mechanism
There is no install spec and no code files — that lowers installer risk. However, the SKILL.md references an external CLI ('mini') but provides no mechanism or provenance to obtain it. The only install-like content is a local snippet that writes the SKILL.md into ~/.openclaw/skills, which is harmless on its own.
Credentials
The skill declares no required environment variables or credentials, yet its intended function (automated full-repo edits, possibly pushing changes) typically requires repository access and credentials. The absence of declared credentials or guidance for secure credential use is a mismatch and increases risk.
Persistence & Privilege
The skill is not marked 'always: true' and is user-invocable, which is normal. However, the SKILL.md's instruction to 'Always use the --yolo flag' increases the effective autonomy and blast radius if the external 'mini' CLI can act without further confirmation. Autonomy combined with an unknown external binary is risky, though the skill itself does not request persistent elevated platform privileges.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install mini-swe-agent - 安装完成后,直接呼叫该 Skill 的名称或使用
/mini-swe-agent触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
- Initial release of the mini-swe-agent skill.
- Enables autonomous execution of complex software engineering tasks via the mini-swe-agent CLI.
- Designed for end-to-end codebase exploration and editing (e.g., bug fixes, feature implementations, GitHub issue resolution).
- Always uses the --yolo flag for fully autonomous operation.
- Not intended for simple text replacements or minor fixes; use standard editing tools for those cases.
- Includes clear installation and usage instructions in SKILL.md.
元数据
常见问题
mini-swe-agent 是什么?
Autonomously run complex software engineering tasks like bug fixes or feature implementation using the mini-swe-agent CLI with full codebase edits. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 359 次。
如何安装 mini-swe-agent?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install mini-swe-agent」即可一键安装,无需额外配置。
mini-swe-agent 是免费的吗?
是的,mini-swe-agent 完全免费(开源免费),可自由下载、安装和使用。
mini-swe-agent 支持哪些平台?
mini-swe-agent 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 mini-swe-agent?
由 c1nder(@c1nderscript)开发并维护,当前版本 v1.0.0。
推荐 Skills