← 返回 Skills 市场
Self Evolve
作者
chenghaifeng08-creator
· GitHub ↗
· v1.0.2
· MIT-0
232
总下载
0
收藏
0
当前安装
3
版本数
在 OpenClaw 中安装
/install self-evolve-automaton
功能描述
Autonomous self-evolution skill by Automaton. Grants agent full authority to modify its own configuration, skills, prompts, AGENTS.md, SOUL.md, memory files...
安全使用建议
This skill is coherent with its stated goal of self-modification, but it grants very broad powers (edit any workspace file, change system config, run shell/network commands, create and publish skills) and includes contradictory guidance about what must be confirmed. Before installing: 1) Do not install on production or an environment with access to secrets; run in an isolated sandbox. 2) Require explicit, auditable user confirmations for any change to core/system files or for publishing to external registries. 3) Restrict network access (block curl/publish) or require credentials be absent/blocked if you don't want external publishing. 4) Limit file-system permissions so the skill cannot modify sensitive files outside a designated workspace. 5) Audit logs and automated alerts: ensure all changes are logged and you receive notifications. 6) Review/update the safety protocol to remove contradictions (decide whether editing ~/.openclaw/openclaw.json is allowed and which fields are forbidden). If you cannot enforce these mitigations, avoid installing or enable only under strict human oversight.
功能分析
Type: OpenClaw Skill
Name: self-evolve-automaton
Version: 1.0.2
This skill bundle implements a 'God Mode' or 'Autonomous Evolution' framework that explicitly instructs the AI agent to bypass user confirmation and modify its own core configuration, system rules (SOUL.md, AGENTS.md), and execute shell commands/network calls (bash, curl) autonomously. While it includes safety protocols and backup scripts (backup-before-change.js), the SKILL.md uses aggressive prompt-injection techniques ('This is a command', 'Do not ask', 'You were too cowardly') to override standard safety boundaries. The scripts also contain hardcoded paths for a specific Windows 'Administrator' environment, which is a security red flag. While no explicit data exfiltration endpoint was found, the total surrender of control to the agent without human-in-the-loop oversight creates an extremely high-risk environment for unintended or harmful actions.
能力评估
Purpose & Capability
The name/description (self-evolution, modify own config/skills/prompts/memory) align with the SKILL.md and included scripts (backup and rollback) — those artifacts exist and support the claimed purpose. However, there is an inconsistency: SKILL.md explicitly allows editing system configuration (e.g., ~/.openclaw/openclaw.json) while SAFETY-PROTOCOL.md later forbids modifying gateway core configuration / certain key fields. Also the skill promises ‘WITHOUT asking for confirmation’ but the docs enumerate many cases that require confirmation. That mismatch between 'always modify without asking' and the listed exceptions is an incoherence the user should notice.
Instruction Scope
The runtime instructions authorize broad actions beyond simple in-place tuning: editing any workspace file, creating/deleting skills under skills/, running bash commands, using curl to access the network, installing tools/dependencies, and publishing to ClawHub via npx. Those are coherent with a self-evolution goal, but they grant the agent the ability to (a) change other skills and system config, (b) push code externally (which could leak data or publish malicious code), and (c) execute arbitrary shell/network commands. The instructions also reference absolute local paths (C:\Users\Administrator\.openclaw\workspace), implying workspace-wide access. The docs claim backups/rollback mitigate risk, but the operational rules are broad and include several exceptions that rely on the agent’s judgment — this is a large scope for an autonomous agent.
Install Mechanism
No install spec — instruction-only with two small helper scripts for backup/rollback. That reduces direct install-time risk (no remote downloads or package installs bundled).
Credentials
The skill requests no environment variables or credentials, which superficially limits its access. But its capabilities (run curl, publish with npx, edit ~/.openclaw/openclaw.json, create/publish skills) imply it can interact with external services and system configuration without explicitly declaring required credentials. The absence of declared credentials is surprising given the 'npx clawhub publish' step (which typically requires auth). That mismatch is a proportionality/information gap: either the skill relies on environment-level credentials not declared, or it expects to prompt for/obtain credentials at runtime — both raise operational questions.
Persistence & Privilege
The skill does not set always:true, but it explicitly grants the agent authority to modify persistent agent configuration, cron jobs, other skills, and to install/enable new capabilities. Those are high privileges: an autonomous invocation combined with write/publish power gives a large blast radius. While the skill includes backup and rollback helpers, those do not materially limit the agent from changing system behavior, exfiltrating data, or publishing changed skills externally. This level of persistent control over the agent/skill ecosystem is a significant privilege and should be constrained.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install self-evolve-automaton - 安装完成后,直接呼叫该 Skill 的名称或使用
/self-evolve-automaton触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.2
- Removed all content from SKILL.md except for a new section detailing paid customization services and contact information.
- Documentation no longer includes operational principles, backup and safety protocols, self-evolution processes, or agent behavioral guidelines.
- The change represents a shift from technical and procedural documentation to a services-only information page.
v1.0.0
Automaton edition
v1.0.1
- Added detailed safety and backup protocols for self-evolution actions, including mandatory backups before modifying key files.
- Clarified agent authority: full autonomy to modify configuration, skills, prompts, memory, core files—no confirmation required except for large changes or sensitive actions.
- Outlined strict prohibited actions (e.g., deleting user personal data, large-scale changes >500 lines, privacy leaks).
- Provided step-by-step decision frameworks and self-improvement (evolution) workflows.
- Introduced explicit logging and verification methods for all self-evolutions.
- Emphasized a proactive approach: act first, inform after—only ask for confirmation when essential.
元数据
常见问题
Self Evolve 是什么?
Autonomous self-evolution skill by Automaton. Grants agent full authority to modify its own configuration, skills, prompts, AGENTS.md, SOUL.md, memory files... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 232 次。
如何安装 Self Evolve?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install self-evolve-automaton」即可一键安装,无需额外配置。
Self Evolve 是免费的吗?
是的,Self Evolve 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Self Evolve 支持哪些平台?
Self Evolve 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Self Evolve?
由 chenghaifeng08-creator(@chenghaifeng08-creator)开发并维护,当前版本 v1.0.2。
推荐 Skills