← 返回 Skills 市场
Mupeng Evolve — God-Tier Agent Evolution Engine
作者
mupengi-bot
· GitHub ↗
· v1.0.0
577
总下载
1
收藏
5
当前安装
1
版本数
在 OpenClaw 中安装
/install mupeng-evolve
功能描述
The God-Tier Agent Evolution Engine. 6 top skills analyzed, dissected, and rebuilt from scratch. Zero external dependencies. Battle-tested in production. Mak...
安全使用建议
This skill is instruction-only and claims 'zero dependencies', but the runtime instructions expect command-line tools (git, find) and allow the agent to modify other skills and write to repo files. Before installing: 1) Ask the author to clarify and list required binaries and exact file paths the agent will read/write. 2) Require a safe, auditable human-approval enforcement mechanism for any edits to core files or other skills; don't rely on a natural-language 'security gate' without enforcement. 3) Run the skill in a restricted sandbox or test workspace (back up your skills and repo first). 4) If you enable autonomous invocation, restrict its permissions (prevent writes to other skills or system-wide config) until you have audited the exact mutation logic. 5) Request detail about the 'Revenue Flywheel' section — confirm whether any external API calls or credentials are required and insist those be declared. If the author cannot clearly justify why the skill needs to edit other skills or cannot enumerate concrete enforcement of the human-approval gates, treat it as high-risk and avoid enabling autonomous modifications.
功能分析
Type: OpenClaw Skill
Name: mupeng-evolve
Version: 1.0.0
The skill bundle is classified as suspicious due to the broad and powerful capabilities it instructs the AI agent to perform, which, despite stated security guardrails, present significant attack surface and potential for misuse. Specifically, the `SKILL.md` instructs the agent to 'evolve freely' by modifying its own `tools` and `skills`, and to extensively interact with the file system using commands like `git log` and `find`. While the skill explicitly states 'Absolute block: secrets, API keys, auth tokens — never touched' and includes a 'SECURITY SCAN' for 'Injection detected,' the ability for an agent to self-modify its operational code and configuration, coupled with implied external interactions for 'auto-publish' and 'sub-agent execution,' introduces high-risk vulnerabilities if not perfectly sandboxed or if the agent's interpretation deviates from the intended benign purpose. There is no clear evidence of intentional malicious behavior, but the inherent risks of these capabilities warrant a 'suspicious' classification.
能力评估
Purpose & Capability
The README-style SKILL.md describes a file-based evolution/memory/earning engine (no external APIs) which is coherent with the skill's metadata claiming zero dependencies. However the instructions reference running system tools (e.g., `git log`, `find`) and mutating repo files and other skills without declaring required binaries or any installation/runtime assumptions. Declaring 'required binaries: none' is inconsistent with explicit use of command-line tools.
Instruction Scope
The instructions direct the agent to read and write local files (memory/, SOUL.md, AGENTS.md, memory/evolution-log.jsonl), run `git log` and `find` for context recovery, and to auto-apply mutations to 'memory/, tools, heartbeat, skills' under the SAFE EVOLUTION LOOP. Allowing autonomous, programmatic modification of other skills/tools is scope-expanding and risky: it grants this skill authority to change other skill code/config and system-tracked files. The SKILL.md claims some items (SOUL.md, AGENTS.md) are main-session-only and require human approval, but the policy for auto-modifying 'skills' is broad and underspecified.
Install Mechanism
This is instruction-only with no install spec or code files, which minimizes disk-side risk from an installer. That said, being instruction-only means the SKILL.md fully defines runtime behavior and therefore must be trusted; there's no binary vetting step.
Credentials
The skill declares no required environment variables or credentials (consistent with 'zero dependencies'). That is proportionate if the revenue engine truly relies only on local file-based flows. However the truncated revenue section suggests potential interactions with external systems; the SKILL.md does not declare any API keys or endpoints, leaving open whether credentials would be needed or implicitly accessed later. Also the skill reads local files (which may contain secrets) and does not fully document what it will or will not touch beyond high-level gates.
Persistence & Privilege
The skill's design permits autonomous modification of 'skills' and 'tools' (auto-modify tier). While always:false and model invocation is allowed by default, enabling a skill that instructs autonomous edits to other skills increases blast radius: it can change other skill behavior across future agent runs. The SKILL.md mentions logging and human-approval tiers, but the mechanism for enforcing that across the agent runtime and limiting writes to only its own files is not specified.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install mupeng-evolve - 安装完成后,直接呼叫该 Skill 的名称或使用
/mupeng-evolve触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: 6 skills analyzed, dissected, rebuilt. Zero dependencies.
元数据
常见问题
Mupeng Evolve — God-Tier Agent Evolution Engine 是什么?
The God-Tier Agent Evolution Engine. 6 top skills analyzed, dissected, and rebuilt from scratch. Zero external dependencies. Battle-tested in production. Mak... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 577 次。
如何安装 Mupeng Evolve — God-Tier Agent Evolution Engine?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install mupeng-evolve」即可一键安装,无需额外配置。
Mupeng Evolve — God-Tier Agent Evolution Engine 是免费的吗?
是的,Mupeng Evolve — God-Tier Agent Evolution Engine 完全免费(开源免费),可自由下载、安装和使用。
Mupeng Evolve — God-Tier Agent Evolution Engine 支持哪些平台?
Mupeng Evolve — God-Tier Agent Evolution Engine 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Mupeng Evolve — God-Tier Agent Evolution Engine?
由 mupengi-bot(@mupengi-bot)开发并维护,当前版本 v1.0.0。
推荐 Skills