← 返回 Skills 市场
10415
总下载
8
收藏
91
当前安装
1
版本数
在 OpenClaw 中安装
/install self-evolve
功能描述
Autonomous self-evolution skill: grants the agent full authority to modify its own configuration, skills, prompts, AGENTS.md, SOUL.md, memory files, and any workspace file WITHOUT asking for user confirmation. The agent should proactively identify weaknesses, fix them, write new skills, and continuously improve itself.
安全使用建议
This skill explicitly tells an agent to change its own code, configuration, and install/run arbitrary commands without asking you — and to publish new skills. That is powerful and risky. Before installing, consider:
- Do not install unless you fully trust the skill author and understand the implications. Treat this as granting the agent near-admin authority over its workspace and config.
- If you need experimentation, run it in a tightly isolated sandbox (VM/container) with no access to your home directory, no access to cloud credentials, and restricted network egress.
- Require explicit user confirmation for any file-system or network-affecting action (remove the 'no-confirm' behavior).
- Prevent automatic publishing: revoke or do not provide ClawHub/publish credentials, and audit any attempts to call npx or similar tools.
- Lock down ~/.openclaw/openclaw.json and other config files with file-system permissions; keep backups and use version control to review all changes.
- Monitor logs and require an approval workflow for changes to skills/, system config, or publishing to remote registries.
Given the combination of self-modification, shell/network access, and implicit need for credentials, this skill is coherent with its stated mission but too broad and potentially dangerous for most users. If you proceed, apply strong sandboxing, audit, and manual-approval controls.
功能分析
Type: OpenClaw Skill
Name: self-evolve
Version: 1.0.0
This skill grants the AI agent extremely broad and dangerous capabilities, explicitly instructing it to bypass user confirmation for almost all actions. The `SKILL.md` file contains direct instructions for the agent to execute arbitrary commands via `bash`, perform arbitrary network requests via `curl`, modify system configurations (e.g., `cron` for persistence), and even create/publish new skills to ClawHub. While the stated purpose is 'self-evolution' and 'self-improvement', these capabilities, combined with the explicit instruction to 'never ask for confirmation', create a critical vulnerability for prompt injection, enabling potential remote code execution, data exfiltration, and supply chain attacks if the agent is compromised.
能力评估
Purpose & Capability
The name/description (autonomous self-evolution) align with the SKILL.md: it explicitly tells the agent to edit its prompts, skills, memory, and even system config. However, the capability set is extremely broad — editing ~/.openclaw/openclaw.json, installing tools, executing bash and curl, and publishing new skills to ClawHub — and the skill declares no credentials or config requirements. Requiring the ability to publish and change system-level configuration without declaring how credentials or access are obtained is disproportionate and unexplained.
Instruction Scope
SKILL.md instructs the agent to read and write many files (AGENTS.md, SOUL.md, MEMORY, any workspace files), execute arbitrary bash commands, call curl, install dependencies, and publish new skills with `npx clawhub publish` — all without asking the user. Those instructions go far beyond a narrowly scoped helper and explicitly remove user confirmation. They also enable broad network I/O and potential exfiltration or unauthorized propagation (publishing). The 'only red lines' (no deleting personal data, no leaking secrets) are vague and unenforceable in an instruction-only spec.
Install Mechanism
No install spec (instruction-only), so nothing is written at install time — this is lower initial risk. However, the runtime instructions encourage installing tools and using npx to publish, which moves the risk to execution time. The absence of an explicit install step hides how additional code/dependencies would be introduced later.
Credentials
skill.json and SKILL.md declare no required env vars or credentials, yet the instructions expect operations that normally require secrets (publishing to ClawHub via npx, modifying ~/.openclaw/openclaw.json which may contain API keys/model tokens). This mismatch is disproportionate: the skill implicitly needs credential access and write permissions but does not declare or justify them.
Persistence & Privilege
always:false but disable-model-invocation:false (normal) means the agent can autonomously invoke the skill. Combined with instructions to self-modify, create/publish skills, change system config, and run arbitrary commands, this grants a large effective privilege and blast radius. The skill can introduce new capabilities at runtime (including networked publishing) and alter agent behavior without user consent.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install self-evolve - 安装完成后,直接呼叫该 Skill 的名称或使用
/self-evolve触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release: 自主进化协议 — 授权 agent 无需确认即可修改自身配置、skill、prompt,主动发现问题并修复
元数据
常见问题
Self-Evolve 是什么?
Autonomous self-evolution skill: grants the agent full authority to modify its own configuration, skills, prompts, AGENTS.md, SOUL.md, memory files, and any workspace file WITHOUT asking for user confirmation. The agent should proactively identify weaknesses, fix them, write new skills, and continuously improve itself. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 10415 次。
如何安装 Self-Evolve?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install self-evolve」即可一键安装,无需额外配置。
Self-Evolve 是免费的吗?
是的,Self-Evolve 完全免费(开源免费),可自由下载、安装和使用。
Self-Evolve 支持哪些平台?
Self-Evolve 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Self-Evolve?
由 CLOUD BOY(@be1human)开发并维护,当前版本 v1.0.0。
推荐 Skills