← 返回 Skills 市场
Proprioception
作者
John DeVere Cooley
· GitHub ↗
· v1.0.0
412
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install proprioception
功能描述
Self-spatial awareness for AI agents. Gives your bot a real-time sixth sense of where it is relative to the user's goal, its own confidence boundaries, conve...
安全使用建议
What to check before installing:
- Review the omitted file (text-utils.js) and any other truncated/omitted files. Those utilities implement tokenization, similarity, and pattern counting — if they also include network calls, file writes, or telemetry hooks, that would change the assessment.
- Double-check there are no hidden network calls or use of process.env in the full codebase. The reference doc mentions a "Data Flywheel" (collecting aggregate telemetry). That is not present in the visible scripts, but if telemetry/upload code exists elsewhere it would be unexpected for a skill that claims “zero external API calls.”
- Confirm how your agent runtime executes skill code: is execution sandboxed, are filesystem and network accesses restricted? Running this skill in a restricted test environment first is prudent.
- If you plan to use this in production, ask the author for provenance (who published it) and for an explicit statement about data handling (no telemetry, no uploads, no logging outside the agent). The skill is coherent with its stated purpose, but the missing file and the 'data flywheel' language are reasons to verify there's no undeclared telemetry or side effects.
功能分析
Type: OpenClaw Skill
Name: proprioception
Version: 1.0.0
The skill's core logic, implemented in the Node.js scripts, is benign, performing local text analysis without external network calls or sensitive file access. However, the `SKILL.md` file contains an instruction for the OpenClaw agent to execute a shell command (`node "$(dirname "$SKILL_PATH")/scripts/proprioception-engine.js" --root-intent "$ROOT_INTENT" --current-response "$CURRENT_RESPONSE" ...`). This command directly interpolates agent-provided variables (`$ROOT_INTENT`, `$CURRENT_RESPONSE`, `$PRIOR_SIGNALS_JSON`) into the shell. If the OpenClaw agent platform does not properly sanitize or escape these variables before execution, a malicious user could craft inputs to achieve shell injection, leading to Remote Code Execution. This constitutes a significant vulnerability, classifying the skill as suspicious.
能力评估
Purpose & Capability
Name/description, the CLI entrypoint (node script), and the sensor modules align: the package implements five local analysis sensors and a dashboard. Requiring node is coherent. However, the reference doc includes a 'Data Flywheel Potential' section describing aggregating telemetry across sessions — that capability is described but not implemented in the shown code. This is a minor inconsistency: it could be aspirational, but it raises a question about whether future/hidden code will collect or export telemetry.
Instruction Scope
SKILL.md and the scripts describe only local analysis of conversation text and producing alerts or an ASCII dashboard. The CLI interface accepts the conversation context and prior signals via arguments; there are no instructions in SKILL.md that ask the agent to read arbitrary system files, environment variables, or to call external endpoints. Based on the visible code, the runtime scope is limited to analyzing provided text.
Install Mechanism
No install spec is provided (instruction-only), which is low risk in general. However, the skill bundle contains several Node scripts that will be executed by the agent runtime (node required). Because there is no package-install step and no external download, there is no immediate network-based install risk — but the agent will execute bundled JS. Verify how your agent runtime executes skill code (sandboxing, permission model).
Credentials
The skill declares no required environment variables, no credentials, and no config paths. The visible code does not read process.env or request credentials. This is proportional to a purely local text-analysis capability.
Persistence & Privilege
Skill flags are default (not always:true), and scripts shown do not modify other skills or global agent config. The code produces output and a dashboard but does not persist data or install background services in the provided files. Confirm how the agent runtime handles skill storage and logs.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install proprioception - 安装完成后,直接呼叫该 Skill 的名称或使用
/proprioception触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release — Self-spatial awareness for AI agents
元数据
常见问题
Proprioception 是什么?
Self-spatial awareness for AI agents. Gives your bot a real-time sixth sense of where it is relative to the user's goal, its own confidence boundaries, conve... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 412 次。
如何安装 Proprioception?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install proprioception」即可一键安装,无需额外配置。
Proprioception 是免费的吗?
是的,Proprioception 完全免费(开源免费),可自由下载、安装和使用。
Proprioception 支持哪些平台?
Proprioception 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Proprioception?
由 John DeVere Cooley(@jcools1977)开发并维护,当前版本 v1.0.0。
推荐 Skills