← 返回 Skills 市场
477
总下载
0
收藏
4
当前安装
1
版本数
在 OpenClaw 中安装
/install soulkeeper
功能描述
Ensures AI agents maintain consistent identity by auditing soul rules, detecting behavioral drift in transcripts, and injecting context-aware reminders.
安全使用建议
This skill is coherent with its stated purpose, but it embeds hardcoded hints about local tools and credential file locations that are not declared. Before installing or running it: 1) review the full source (the shipped .py files) for any code that reads /root, /root/.config, or other config files; 2) do not run it as root — run in a sandboxed agent account with minimal filesystem access; 3) if you plan to use remind.py, remove or edit builtin reminders that mention credential paths or tooling you don't want the agent to access; 4) if you need to run audits against a workspace, point audit.py only at a copy of the workspace that has secrets removed; 5) ask the publisher for a homepage or source repository and for justification of the hardcoded paths. If you cannot verify those items, treat the skill as high-risk and avoid granting it access to sensitive files or credentials.
功能分析
Type: OpenClaw Skill
Name: soulkeeper
Version: 1.0.0
The OpenClaw AgentSkills skill bundle 'soulkeeper' is classified as benign. Its purpose is to help AI agents maintain identity and operational guidelines by auditing local 'soul files', detecting behavioral drift in conversation transcripts, and injecting context-aware reminders. All operations involve local file system reads and writes (e.g., `audit.py` reading markdown and writing JSON, `drift.py` reading transcripts and rules, `remind.py` reading rules). There is no evidence of data exfiltration, unauthorized network communication, or malicious code execution (e.g., `eval`/`exec` of untrusted input, remote payload fetching). The instructions in `SKILL.md` for the agent to execute local commands (e.g., `soul-remind --heartbeat`) are part of the skill's intended self-management functionality, not a prompt injection for malicious subversion. While the `ln -s` commands in `SKILL.md` suggest privileged operations (symlinking to `/usr/local/bin`), this is for making the agent's own tools accessible and is not indicative of malicious intent or a backdoor within the context of an agent managing its environment.
能力评估
Purpose & Capability
Name, description, SKILL.md, and the three scripts (audit.py, drift.py, remind.py) are coherent: they parse SOUL.md/TOOLS.md/AGENTS.md, generate rules, score transcripts, and produce reminders. However several built-in reminders and pattern lists reference specific tools and credential locations (e.g., /root/.config/kling-ai/credentials.json, Windows VPS browser automation, upload-post profiles) that go beyond the advertised scope and are not declared in the skill metadata.
Instruction Scope
SKILL.md instructs the agent to read workspace files (SOUL.md, TOOLS.md, AGENTS.md) which is expected, but the code's builtin reminders and violation patterns explicitly mention system paths and credential files and encourage use of platform tools. Those code-level reminders could cause the agent to read or surface sensitive config files outside the declared workspace scope even though the manifest and metadata do not request access to those paths.
Install Mechanism
No install spec, pure Python stdlib, no downloads or external packages. Risk from install mechanism is low — nothing will be fetched from external URLs or written to system locations by an installer step.
Credentials
The skill declares no required environment variables or config paths, but the code contains hardcoded references to local credential paths and platform tooling (e.g., /root/.config/kling-ai/credentials.json, /root/.openclaw paths, mentions of logged-in Windows VPS/browser automation and upload-post profiles). That mismatch is disproportionate: the skill could lead an agent to access secrets or credentials that were neither requested nor explained.
Persistence & Privilege
always is false and the skill is user-invocable (normal). SKILL.md encourages adding reminders to HEARTBEAT.md or linking scripts into PATH, which would increase how often it runs, but this is a user action rather than a forced privilege. No evidence the skill modifies other skills or agent-level config autonomously.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install soulkeeper - 安装完成后,直接呼叫该 Skill 的名称或使用
/soulkeeper触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release. Soul audit, drift detection, reminder injection. Works with any SOUL.md.
元数据
常见问题
SoulKeeper 是什么?
Ensures AI agents maintain consistent identity by auditing soul rules, detecting behavioral drift in transcripts, and injecting context-aware reminders. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 477 次。
如何安装 SoulKeeper?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install soulkeeper」即可一键安装,无需额外配置。
SoulKeeper 是免费的吗?
是的,SoulKeeper 完全免费(开源免费),可自由下载、安装和使用。
SoulKeeper 支持哪些平台?
SoulKeeper 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 SoulKeeper?
由 Cassh(@cassh100k)开发并维护,当前版本 v1.0.0。
推荐 Skills