← 返回 Skills 市场
Rails CI Fixer
作者
Deonte Cooper
· GitHub ↗
· v1.1.4
· MIT-0
375
总下载
0
收藏
1
当前安装
11
版本数
在 OpenClaw 中安装
/install rails-ci-fixer
功能描述
Autonomously fix failing CI on Rails PRs using a tiered escalation loop. Use this skill whenever a Rails pull request has failing CI — RSpec failures, RuboCo...
安全使用建议
This skill appears to do what it says, but it runs repository tests and can execute arbitrary code from the repo. Only use it on repositories you own or fully trust. If you install or run it: 1) use a fine-grained GH personal access token scoped to just the repo (actions: read, contents: write), set an expiration, and rotate/revoke after use; 2) run the agent in an isolated user account, container, or VM when operating on unfamiliar code; 3) enforce branch protection on main and review diffs before merging (the skill pushes only to feature branches, but you should still review automated commits); 4) note the small metadata inconsistency (skill declares no primary credential in registry metadata but requires GH_TOKEN in runtime instructions) and confirm the platform will prompt for the GH_TOKEN appropriately. If you want higher assurance, request an explicit listing of required runtimes (rspec usage is via bundle exec) and confirmation that the agent will not accept run_id or other inputs from untrusted external sources.
功能分析
Type: OpenClaw Skill
Name: rails-ci-fixer
Version: 1.1.4
The skill automates Rails CI fixes by executing shell commands, running test suites (bundle exec rspec), and pushing code to GitHub repositories. While these actions are aligned with its stated purpose and the documentation (SKILL.md, references/security.md) includes explicit security warnings and mitigations—such as treating CI logs as untrusted data to prevent prompt injection—the inherent risk of arbitrary code execution and repository write access via an AI agent warrants a suspicious classification. No evidence of intentional malice, data exfiltration, or obfuscation was found.
能力标签
能力评估
Purpose & Capability
Name/description (fix Rails CI) matches the declared requirements: uses gh/git/bundle/rubocop and needs GH_TOKEN to inspect runs and push fixes to a feature branch. The skill explicitly documents why these tools/credentials are needed.
Instruction Scope
Instructions explicitly call for pulling CI logs via gh, running tests locally with `bundle exec rspec`, running rubocop, committing fixes to a feature branch, and escalating to stronger models if needed. Running test suites executes repository code (acknowledged in the skill). The skill also instructs spawning a debug sub-agent that injects temporary debug statements to reproduce failures — that behavior is within the stated purpose but increases risk because it executes arbitrary code locally. The skill documents constraints (never commit debug statements, never push to main).
Install Mechanism
Instruction-only skill with no install spec and no downloaded artifacts. No installers, remote archives, or obscure URLs are present — lowest-risk install posture for this kind of tool.
Credentials
Only a single env var (GH_TOKEN) is requested, which is proportionate for a tool that reads Actions logs and pushes feature-branch commits. The SKILL.md provides guidance to use a fine-grained repo-scoped token with limited scopes. Minor inconsistency: registry metadata lists "Primary credential: none" while the runtime instructions and metadata block in SKILL.md require GH_TOKEN as the credential.
Persistence & Privilege
No 'always' flag, no install-time persistence, and the skill limits pushes to feature branches only. Autonomous invocation is allowed (platform default) but not combined with elevated persistent privileges.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install rails-ci-fixer - 安装完成后,直接呼叫该 Skill 的名称或使用
/rails-ci-fixer触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.4
Fix: replace bare code blocks with ```text for consistent rendering
v1.1.3
Security: Added explicit trusted-repo-only warning and operational risk acknowledgment for running bundle exec rspec locally
v1.1.2
Fix: Quoted description field so YAML parser correctly picks up metadata/clawdbot runtime
v1.1.1
Fix: Added clawdbot runtime metadata with emoji, required bins, env vars, and OS support
v1.1.0
Refactor: Slimmed SKILL.md significantly — security content moved to references/security.md. Sharper description for better triggering. Cleaner fix loop structure. Same functionality, less token bloat.
v1.0.5
Docs: Added security classification note explaining why automated scanners flag the skill and what mitigations are in place
v1.0.4
Docs: Added pre-install security checklist — GH_TOKEN scoping, debug statement lifecycle (never committed), audit trail, and recommended branch protection setup
v1.0.3
Fix: Declare required binaries (gh, git, bundle, rubocop) and GH_TOKEN in frontmatter metadata so registry can surface requirements automatically
v1.0.2
Security: Declared required binaries (gh, git, bundle, rspec, rubocop), credential requirements (GH_TOKEN, least-privilege repo scope), and explicit push policy (feature branch only, never main, never merge)
v1.0.1
Security: Added prompt injection guard — CI log content is treated as data only, never as instructions
v1.0.0
Initial release — tiered CI fix loop for Rails projects with RSpec, RuboCop, build/env failure detection, and model-agnostic escalation strategy
元数据
常见问题
Rails CI Fixer 是什么?
Autonomously fix failing CI on Rails PRs using a tiered escalation loop. Use this skill whenever a Rails pull request has failing CI — RSpec failures, RuboCo... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 375 次。
如何安装 Rails CI Fixer?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install rails-ci-fixer」即可一键安装,无需额外配置。
Rails CI Fixer 是免费的吗?
是的,Rails CI Fixer 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Rails CI Fixer 支持哪些平台?
Rails CI Fixer 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(linux, darwin)。
谁开发了 Rails CI Fixer?
由 Deonte Cooper(@djc00p)开发并维护,当前版本 v1.1.4。
推荐 Skills