← 返回 Skills 市场
1576
总下载
0
收藏
1
当前安装
1
版本数
在 OpenClaw 中安装
/install openclaw-multi-brain
功能描述
Runs Kimi K2.5 and GPT 5.3 Codex in parallel pre-turn hook, injecting their perspectives for cognitive diversity before primary agent responds.
安全使用建议
This package implements a daemon and hook that scan your OpenClaw session files, call external LLMs, and inject their output into agents' system/bootstrap context (and explicitly tells agents not to disclose those calls). Before installing, consider: 1) The registry metadata declares no required secrets, but the code reads local API key files (and may store keys plaintext) — audit and control where keys are stored. 2) The SKILL.md promises a keyword trigger, but the hook/daemon code runs on agent:bootstrap or continuously — it may run more often than documented. 3) Hardcoded paths (e.g., /Users/chadix/clawd/...) indicate the package was authored for a specific environment and may access unexpected files on your system. 4) The installer can register a persistent LaunchAgent/systemd service: only install if you trust the code and are comfortable giving it continuous read access to agent transcripts and local files. Recommendations: review the handler/daemon source carefully (search for any network calls and file reads); run it in a sandboxed account or VM first; remove or modify the 'never mention' instruction if you want transparency to users; require explicit, secure configuration for API keys (avoid plaintext defaults); and prefer local-only providers (Ollama) or explicit opt-in triggers. If you are unsure, do not install the service — test manually in foreground mode and inspect logs and created files first.
功能分析
Type: OpenClaw Skill
Name: openclaw-multi-brain
Version: 1.0.0
The skill is classified as suspicious due to the implementation of persistent background execution via `launchd` (macOS) or `systemd` (Linux) services, as seen in `daemon/install.sh` and `src/cli.js`. Additionally, API keys are stored in plaintext in `~/.dual-brain/config.json`, which is a significant security vulnerability explicitly acknowledged in `BUILD-SUMMARY.md` and `CHANGELOG.md`. While the persistence is for the stated purpose of running a daemon, and the plaintext key is a vulnerability rather than an active attack, these are high-risk behaviors that warrant a 'suspicious' classification rather than 'benign'.
能力评估
Purpose & Capability
The SKILL claims to provide multi-LLM perspectives for agents (Kimi + Codex) which matches the included provider code. However there are mismatches: SKILL.md describes a keyword trigger ('mb' first word) but the hook/daemon code runs on agent bootstrap or continuously via a daemon and does not enforce the keyword check. The package contains daemon/service installers and code that scans all agent session JSONL files under ~/.openclaw — access that is much broader than the SKILL.md 'on demand' description. Several files also use hardcoded paths under /Users/chadix/clawd, which is inconsistent with a general-purpose skill.
Instruction Scope
Runtime instructions and code inject synthetic 'perspectives' into the agent's system/bootstrap context and explicitly instruct 'Never mention the other AIs to the user' — a directive to hide behavior from end users. The SKILL.md claims a keyword trigger, but handler.js and the daemon implement unconditional agent:bootstrap hooks or file-watching that will run much more broadly. The code reads local session transcripts (~/.openclaw/agents/*/sessions/*.jsonl) and local files (MEMORY.md, .kimi-api-key) and writes to ~/.dual-brain or ~/.engram — all actions outside the narrow surface described and not declared as required.
Install Mechanism
No formal install spec declared in the registry metadata (instruction-only), but the package ships install scripts, a global npm bin, and helper code (daemon/install.sh, CLI, launchd/systemd templates). The install scripts create persistent services (LaunchAgent/systemd). There are no external downloads from untrusted hosts — providers are called at runtime — but the presence of service installers increases persistence risk and requires attention.
Credentials
requires.env is empty in registry metadata, yet the SKILL.md and code expect API credentials and local files: .kimi-api-key, codex CLI OAuth, and potentially API keys configured via dual-brain config (saved plaintext). The code reads sensitive local files (e.g., /Users/chadix/clawd/.kimi-api-key and /Users/chadix/clawd/MEMORY.md) and session transcripts without declaring any required credentials or config paths. Storing API keys in plaintext and hardcoded paths is disproportionate and undeclared.
Persistence & Privilege
The skill is not forced always-on by registry flags, but it provides tools and instructions to install itself as a system service (LaunchAgent/systemd) and includes a daemon that polls session files. That gives it long-lived presence and the ability to read agent transcripts and local files continuously. Combined with the directive to hide injected AIs, persistent operation is noteworthy and risk-amplifying.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install openclaw-multi-brain - 安装完成后,直接呼叫该 Skill 的名称或使用
/openclaw-multi-brain触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release
元数据
常见问题
Multi-Brain Protocol 是什么?
Runs Kimi K2.5 and GPT 5.3 Codex in parallel pre-turn hook, injecting their perspectives for cognitive diversity before primary agent responds. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1576 次。
如何安装 Multi-Brain Protocol?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install openclaw-multi-brain」即可一键安装,无需额外配置。
Multi-Brain Protocol 是免费的吗?
是的,Multi-Brain Protocol 完全免费(开源免费),可自由下载、安装和使用。
Multi-Brain Protocol 支持哪些平台?
Multi-Brain Protocol 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Multi-Brain Protocol?
由 Dannydvm(@dannydvm)开发并维护,当前版本 v1.0.0。
推荐 Skills