← 返回 Skills 市场

Seed

Name: Seed
Author: awis13

作者 Awis13 · GitHub ↗ · v0.1.2 · MIT-0

darwinlinux ⚠ suspicious

342

总下载

当前安装

版本数

在 OpenClaw 中安装

/install seed

功能描述

Grow firmware on any hardware through HTTP — upload C, compile on device, apply with watchdog rollback

安全使用建议

This skill implements a powerful mechanism: it lets you upload C code to a device, compile it there, and grant that code the ability to read files and run shell commands. Only install or run 'seed' on machines you fully control and isolate (do not run on multi-tenant systems or internet-exposed servers). Before running: review the seed.c source yourself (do not blindly curl | run), prefer cloning the GitHub repo and building locally, restrict network access and run the service inside a sandbox/container with minimal permissions, rotate and protect any tokens produced by seed, and monitor logs and file integrity. If you need to test, use a disposable VM or hardware you can wipe. If you are not comfortable auditing C code or the runtime behavior, do not deploy this skill or the seed software.

功能分析

Type: OpenClaw Skill Name: seed Version: 0.1.2 The 'seed' skill provides a framework for Remote Code Execution (RCE) by allowing an AI agent to write, compile, and hot-swap C code on a remote target via an HTTP API. It includes explicit primitives for shell command execution (`cmd_out`) and hardware discovery, essentially functioning as a programmable remote access tool. While the stated intent in SKILL.md is 'self-growing firmware' development, the capabilities are extremely high-risk and the deployment instructions involve fetching and executing remote code (github.com/Awis13/seed), which is a common vector for system compromise.

能力评估

✓ Purpose & Capability

Name/description (grow firmware via HTTP, compile on-device, watchdog rollback) align with the declared requirements (curl, gcc) and the SKILL.md API. Asking for no credentials and only requiring curl/gcc is coherent for this functionality.

⚠ Instruction Scope

The SKILL.md instructs the agent and user to download and run a seed binary and then supports uploading arbitrary C source, compiling it on-device, and providing handler helpers (file_read, file_write, cmd_out). Those helpers allow reading arbitrary files, writing files, and running shell commands on the target device — capabilities that go well beyond simply 'deploying firmware' and can be used to exfiltrate secrets or escalate access. The instructions also show how to fetch the seed source from a raw GitHub URL and run it, which instructs executing remotely fetched code unless the user audits it first.

ℹ Install Mechanism

This is instruction-only (no install spec). SKILL.md directs using curl to download seed.c from raw.githubusercontent.com and compiling locally; raw.githubusercontent.com is a known host (lower-than-arbitrary-URL risk) but 'curl-and-run' remains high-risk in practice. Nothing in the skill auto-installs software on the agent's host, but it does instruct users to run code they fetch.

⚠ Credentials

The skill itself declares no environment variables and only requires curl/gcc, which is proportional. However, the firmware API exposes file_read and cmd_out that can access arbitrary local files and run commands on the device — meaning sensitive environment data or credentials on a device running seed can be read or invoked by uploaded firmware. Those risks are real even though the skill doesn't ask for credentials explicitly.

ℹ Persistence & Privilege

always:false (good). The skill can be invoked autonomously (default), which is normal; if the agent is allowed to act without supervision, combined with the skill's ability to instruct deployment of a self-updating firmware, the blast radius increases. The skill does not request permanent system privileges itself, but the firmware it helps install can gain long-lived control of a device.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install seed
安装完成后，直接呼叫该 Skill 的名称或使用 /seed 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v0.1.2

- Added a "First steps" section to guide users in obtaining a seed node address and token. - Included clear instructions for deploying a new seed node on any Linux machine. - Made it explicit that the seed binary is ~70KB and requires only libc. - Improved initial onboarding for users who don't have a node running yet.

v0.1.1

- Added a "Source" link to the GitHub repository at the top of the documentation for easier access to project source code. - No other content or functional changes made; documentation remains largely the same.

v0.1.0

Initial release of seed — HTTP-native self-growing firmware for any hardware. - Upload, edit, and compile C firmware directly on the device via HTTP API. - Auto-detects and reports device hardware capabilities (CPU, RAM, disk, peripherals). - Hot-swap new firmware with atomic rollback if health check fails. - Includes endpoints for reading/writing firmware, compiling, applying, and querying config/events. - Secure access via token authentication, with safe recovery for failed firmware flashing.

元数据

Slug seed

版本 0.1.2

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 3

常见问题

Seed 是什么？

Grow firmware on any hardware through HTTP — upload C, compile on device, apply with watchdog rollback. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 342 次。

如何安装 Seed？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install seed」即可一键安装，无需额外配置。

Seed 是免费的吗？

是的，Seed 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Seed 支持哪些平台？

Seed 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（darwin, linux）。

谁开发了 Seed？

由 Awis13（@awis13）开发并维护，当前版本 v0.1.2。