Shiyi Proactive Agent
v1.0.0A proactive agent that anticipates needs and takes initiative. Monitors environment, suggests actions, and proposes tasks based on context. Perfect for agent...
⭐ 0· 90·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (proactive monitoring, action suggestion, task initiation) aligns with the included Python scripts. The code implements context analysis, suggestion generation, task creation, and a daemon monitor — all coherent with the stated purpose. Minor mismatch: registry metadata lists no required config paths, yet the code expects and uses a specific local layout (base_path/memory, base_path/content, base_path/.. /planning). This is reasonable for an agent integration but is not explicitly declared in the metadata.
Instruction Scope
SKILL.md instructs running the included Python scripts; those scripts read local files (memory/MEMORY.md, memory/learning/interactions.json, memory/logs, content/xiaohongshu_post*.md, planning/xiaohongshu-strategy.md) and write logs/tasks (memory/logs/proactive_monitor.log, memory/proactive_tasks.json). There are no external network calls or hidden endpoints, but the scripts will access potentially sensitive local agent files and persist data to disk. The README also encourages adding calls into a session heartbeat or daemon, increasing exposure if enabled.
Install Mechanism
No install spec is provided (instruction-only install), so nothing is downloaded or installed by the registry. The skill requires only python3 on PATH. This is the lowest-risk install mechanism.
Credentials
The skill requests no environment variables or external credentials. That is proportionate to its local-file analysis/design. Note: its behavior depends on local filesystem layout and will access/modify files under the agent/project directory (memory, content, planning), but it does not request tokens or secrets.
Persistence & Privilege
The skill is not flagged always:true and uses default autonomous invocation settings (normal). It can run as a background daemon and the SKILL.md suggests integration into heartbeat checks, which means it can be scheduled to run regularly. It writes its own logs and task file under memory/, but it does not attempt to modify other skills or global agent configuration.
Assessment
This skill is coherent with its stated purpose but it reads and writes local agent files. Before installing:
- Review the 'memory' and 'planning' files it will read (MEMORY.md, memory/learning/interactions.json, planning/xiaohongshu-strategy.md) for any sensitive content you don't want the skill to access.
- Note it will create/append logs and tasks under memory/logs and memory/proactive_tasks.json; ensure you are comfortable with that persistence and file locations.
- If you do not want continuous monitoring, avoid running the daemon mode or adding it to heartbeat; run ad-hoc (e.g., python scripts/action_suggester.py --next).
- The skill mentions actions like 'publish' and 'trade' in config; these are marked as 'confirm_required' in the YAML, and the code does not perform trades or external API calls by itself — still configure the skill to require confirmation before any automated external actions and review/limit 'auto_execute' settings.
- Consider running the skill in a sandboxed environment or with limited filesystem permissions if you have sensitive data in your agent workspace.Like a lobster shell, security has layers — review code before you run it.
latestvk979pddnrys9d3f8nt53ete3x983kzvj
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
Binspython3