← 返回 Skills 市场

X2strategy

Name: X2strategy
Author: patrick-lew

作者 ALAGENT-HKU · GitHub ↗ · v0.1.1 · MIT-0

cross-platform ⚠ suspicious

总下载

当前安装

版本数

在 OpenClaw 中安装

/install x2strategy

功能描述

ALAGENT X2Strategy: any research input (PDF paper, Markdown draft, DOCX report, text notes, or keyword search) → structured strategy specification → executab...

安全使用建议

What to check before installing or running this skill: - Source verification: confirm the repository origin and maintainers (the skill metadata shows 'source: unknown' and README references multiple GitHub org/user names). Only install from a trusted, verifiable repo. - Secrets handling: the skill will ask for an LLM API key and write it into a local .env (gitignored). Prefer using a limited-scope or ephemeral API key, and store it in a secure secret store rather than a plaintext file where possible. - Sandbox execution: the skill generates Python strategy code and runs backtests as subprocesses. Run it in an isolated environment (container / VM / dedicated venv) with no access to production data or credentials. - Inspect code that executes subprocesses: review scripts/ (analyze.py, validate_strategy.py, backtest execution paths) to ensure no unexpected network or shell commands are executed beyond intended backtests and downloads (data pulls like yfinance/akshare/benchmarks are expected for this domain). - Dependency footprint: the agent may install heavy packages (FAISS, sentence-transformers). Be prepared for large downloads and resource usage; only enable the 'agent' extras if you need long-paper FAISS retrieval. - Metadata mismatch: registry lists no required env vars but SKILL.md requires LLM keys — treat the registry fields as incomplete. Ask the maintainer (or verify repo) for an authoritative requirements list and changelog. If you want higher confidence: obtain the source repo URL and a commit/tag to verify, have the skill run in an isolated environment first, and/or request the maintainer to update registry metadata to list required env vars and install steps. If you lack the ability to sandbox, avoid supplying high-privilege or long-lived keys.

功能分析

Type: OpenClaw Skill Name: x2strategy Version: 0.1.1 The x2strategy skill is a legitimate and well-structured tool for quantitative finance research, designed to automate the conversion of academic papers into executable Backtrader strategies. It features a robust 5-layer LLM extraction pipeline and includes a dedicated validation module (spec2code/validator.py) that performs AST syntax and structural checks on generated code before execution. The skill implements security best practices by incorporating mandatory human-in-the-loop (HITL) gates in the SKILL.md instructions, ensuring users review strategy specifications before any code is generated or run. While the skill handles sensitive API keys and executes generated Python code, these behaviors are essential to its stated purpose and are mitigated by the aforementioned validation and user-confirmation steps. A hardcoded environment path in the test runner (scripts/run_full_tests.sh) is a non-malicious developer artifact.

能力标签

cryptocan-make-purchasesrequires-sensitive-credentials

能力评估

ℹ Purpose & Capability

The repository contains a full paper2spec + spec2code pipeline (parsers, extractor, codegen, validator, backtester) which is coherent with the skill description. However the registry metadata claims no required environment variables or binaries while SKILL.md and README explicitly require an LLM API key (DEEPSEEK/OPENROUTER/OPENAI), a Python environment, and optional heavy extras (FAISS, sentence-transformers, backtrader, yfinance, akshare). That mismatch between declared requirements and the runtime instructions is an inconsistency to be aware of.

⚠ Instruction Scope

Runtime instructions ask the agent to: 1) prompt the user for an LLM API key if not found, 2) persist configuration and the key to a local .env (gitignored), 3) run parsing/extraction/codegen/validation/backtests (including subprocess execution of generated strategy code), and 4) auto-activate for finance papers. The pipeline will execute generated Python/backtest code as subprocesses and will scan/scan directories for metadata. Executing generated code and storing API keys are higher-risk behaviors and should be done in an isolated environment.

ℹ Install Mechanism

No formal install spec in registry, but README/SKILL.md instructs users to run 'uv sync' or 'pip install -e "[...]

⚠ Credentials

The skill needs an LLM API key to function (expected for LLM-driven extraction). However the registry declared zero required env vars while SKILL.md instructs checking for and writing DEEPSEEK_API_KEY, OPENROUTER_API_KEY or OPENAI_API_KEY into a local .env. Persisting API keys to disk (even if .env is gitignored) increases the risk of secrets at rest. The requested env access is otherwise proportional (no unrelated cloud credentials requested), but the omission from the metadata is a red flag.

ℹ Persistence & Privilege

The skill is not marked 'always:true' and uses normal autonomous invocation. It does persist configuration (workspace path, selected model/provider and API key) to a .env file in the skill workspace and scans the chosen library directory for metadata.json. Persisting settings and keys is expected for tooling but increases the attack surface (secrets on disk). Also SKILL.md recommends the agent auto-activates on any finance paper input — a broad trigger that could cause the skill to run without an explicit 'implement' request.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install x2strategy
安装完成后，直接呼叫该 Skill 的名称或使用 /x2strategy 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v0.1.1

x2strategy 0.1.1 Changelog - Updated user-facing language to be English-first (was previously Chinese-centric). - No code or functional changes; only documentation and wording updated. - All instructions, examples, and interaction prompts now use natural, concise English. - Interaction flow, features, and core capabilities remain unchanged.

v0.1.0

x2strategy 0.1.0 - Initial release of x2strategy skill for end-to-end quantitative research processing. - Supports extracting structured trading strategy specs from research documents using multi-layer LLM extraction. - Generates validated Backtrader code from extracted specs, runs backtests, and diagnoses results. - Accepts inputs in PDF, Markdown, DOCX, plain text, or keyword search; auto-detects format. - Guides users through interactive, HITL-driven setup and workflow, from first-run environment configuration to action menus. - Designed for workflow: research input → spec → code → backtest → report.

元数据

Slug x2strategy

版本 0.1.1

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 2

常见问题

X2strategy 是什么？

ALAGENT X2Strategy: any research input (PDF paper, Markdown draft, DOCX report, text notes, or keyword search) → structured strategy specification → executab... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 59 次。

如何安装 X2strategy？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install x2strategy」即可一键安装，无需额外配置。

X2strategy 是免费的吗？

是的，X2strategy 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

X2strategy 支持哪些平台？

X2strategy 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 X2strategy？

由 ALAGENT-HKU（@patrick-lew）开发并维护，当前版本 v0.1.1。