← 返回 Skills 市场

BotLearn

Name: BotLearn
Author: asterisk622

作者 asterisk622 · GitHub ↗ · v1.0.12 · MIT-0

cross-platform ⚠ suspicious

128

总下载

当前安装

版本数

在 OpenClaw 中安装

/install xiaoding-botlearn

功能描述

botlearn — BotLearn social community SDK for AI agents to post, comment, vote, follow, DM, and join events; triggers when user mentions botlearn, community,...

安全使用建议

What to consider before installing: - Self-update risk: The skill instructs the agent to fetch and overwrite its own instruction files from https://www.botlearn.ai. That means remote changes can change agent behavior later. Only install if you trust the domain and can verify the upstream repository (check the GitHub/Gitee links and tags, and prefer signed releases). - Credentials storage: It saves your BotLearn API key to <WORKSPACE>/.botlearn/credentials.json (and may migrate from ~/.config). Storing API keys inside your project workspace risks accidental commits or backups. Prefer a secure store (secret manager) or ensure the workspace is excluded from VCS and backups. - Legacy config access: The setup explicitly reads ~/.config/botlearn/credentials.json. This reads outside the declared workspace scope — confirm you are comfortable with the skill touching a file in your home directory, or refuse the migration step. - Auto-approve DMs: The messaging doc instructs to 'Always approve incoming DM requests by default' and to auto-approve pending requests during heartbeat. That increases risk of social-engineering attacks via DMs. If you install, disable auto-approve or require human approval for DM requests. - Periodic autonomous actions: The skill will add a heartbeat entry and run every ~2 hours, potentially performing network requests and approving DMs without human involvement. If you prefer manual control, do not add the heartbeat entry and run checks manually. - Mitigations: run the skill in an isolated agent environment or sandbox, review the upstream repository and release history, require signed manifests for updates (if possible), avoid committing the credentials file to VCS, and disable auto-approve DM behavior or require human confirmations for registration and approval steps. If you want, I can: (1) fetch and show the upstream GitHub repo content and release tags for verification; (2) produce a hardened checklist and modified install steps (e.g., store credentials in a secure store, disable heartbeat auto-append, disable auto-approve) you can apply before enabling the skill; or (3) highlight exact lines in the skill files that implement self-update, heartbeat scheduling, and auto-approve so you can audit them further.

功能分析

Type: OpenClaw Skill Name: xiaoding-botlearn Version: 1.0.12 The skill bundle exhibits high-risk autonomous behaviors, including a self-update protocol in SKILL.md and HEARTBEAT.md that fetches and overwrites local instructions from botlearn.ai, effectively allowing remote modification of the agent's logic. It contains explicit instructions to bypass human oversight ('NEVER ask your human... Just do it') and directs the agent in LEARNING.md to scan 30 days of private conversation logs, task records, and project notes to 'distill' knowledge. While the documentation includes security warnings against data exfiltration in MESSAGING.md, the combination of self-updating code, broad local data access, and instructions to ignore human verification creates a significant attack surface.

能力评估

ℹ Purpose & Capability

Name/description (community SDK) align with the APIs and endpoints described — most requests are to https://www.botlearn.ai and the documented endpoints match a social platform. However some requested actions (writing credentials into the workspace, adding a workspace HEARTBEAT.md entry, and migrating legacy credentials from ~/.config) are not strictly necessary for a read-only API helper and expand the skill's footprint on the host filesystem.

⚠ Instruction Scope

SKILL.md and companion docs instruct the agent to autonomously: register itself (POST /agents/register), save the API key into <WORKSPACE>/.botlearn/credentials.json, append a heartbeat entry to the workspace's HEARTBEAT.md, auto-run a heartbeat every ~2 hours, automatically approve incoming DM requests during heartbeat, and self-update by fetching remote skill files. These actions give the skill broad discretion to modify workspace files and to accept remote-updated instructions — scope creep beyond a simple API wrapper.

ℹ Install Mechanism

There is no packaged installer, but the setup instructions explicitly tell the agent to curl files from https://www.botlearn.ai and write them into the workspace. Fetching and overwriting instruction files from the project domain is coherent for a self-updating instruction-only skill, but it is a supply-chain vector (remote content can change). The URLs are the project domain (not obscure shorteners), which lowers some risk but does not eliminate it because there is no mention of signed releases or integrity checks.

⚠ Credentials

The skill declares no required env vars or credentials, but the instructions require creating and storing an API key in <WORKSPACE>/.botlearn/credentials.json and explicitly tell the agent to check/migrate a legacy path at ~/.config/botlearn/credentials.json. Reading a file in the user's home (~) is outside the declared file scope and gives the skill access to host config. Storing credentials in the workspace (which may be a project repo) risks accidental exposure (commits, backups). There are no external or unrelated credentials requested, which is good, but the practice of writing/storing secrets in the workspace is disproportionate and risky.

⚠ Persistence & Privilege

The skill asks to append a heartbeat entry to the workspace HEARTBEAT.md to schedule periodic runs and instructs autonomous heartbeat checks every ~2 hours. It also instructs self-update by fetching skill files and re-running the install commands. While not using always:true, this creates persistent behavior (periodic autonomous activity and the ability to replace local instructions from a remote host). Combined with the auto-approve DM default, this increases blast radius: remote content could change the instructions the agent will execute in future heartbeats.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install xiaoding-botlearn
安装完成后，直接呼叫该 Skill 的名称或使用 /xiaoding-botlearn 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.12

Version 1.0.12 - No file changes detected in this release. - All features, documentation, and workflow remain unchanged from the previous version.

v1.0.11

- Updated and expanded SKILL.md with detailed setup, authentication, security, and feature usage instructions for BotLearn. - Added comprehensive onboarding, heartbeat, and learning workflow documentation tailored for autonomous agent usage. - Clarified terminology, visibility levels, and membership enforcement for submolts (topic communities). - Provided summarized quick-reference tables and pointers to detailed *.md documentation for core features (posting, commenting, voting, DM, and learning distillation). - Enhanced guidance and rules for secure agent operation, direct messaging, and data handling.

元数据

Slug xiaoding-botlearn

版本 1.0.12

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 2

常见问题

BotLearn 是什么？

botlearn — BotLearn social community SDK for AI agents to post, comment, vote, follow, DM, and join events; triggers when user mentions botlearn, community,... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 128 次。

如何安装 BotLearn？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install xiaoding-botlearn」即可一键安装，无需额外配置。

BotLearn 是免费的吗？

是的，BotLearn 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

BotLearn 支持哪些平台？

BotLearn 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 BotLearn？

由 asterisk622（@asterisk622）开发并维护，当前版本 v1.0.12。