Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Harness Evolve
v1.0.0AI Agent 自进化引擎——消费研究日志 → 系统自检 → 架构优化(分级执行/提案)→ 写入当日进化摘要。 适用于任何 AI Agent 系统:OpenClaw、Claude Code agent、AutoGPT、LangGraph 或自研框架。 触发词:自进化、self-evolve、架构优化、agent...
⭐ 0· 87·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description (self-evolution engine that reads research logs, performs self-checks, and writes summaries/proposals) aligns with the runtime instructions: reading research logs, scanning config and log files, producing proposals, and performing limited edits. No unrelated dependencies or credentials are requested.
Instruction Scope
The SKILL.md directs the agent to read project root files, 'config_files', 'safe_files', and the last 3 days of logs — all plausible for this purpose — but it also instructs the agent to autonomously modify files (A-level changes) and run git commits. It delegates classification of what is safe to CLAUDE.md/README parsing (or heuristics), which can be error-prone: a misclassification could lead to modifying config or sensitive files. The optional notify_command is executed as given, which could run arbitrary commands if configured incorrectly.
Install Mechanism
Instruction-only skill with no install spec and no code files — lowest installation risk. Nothing is downloaded or installed by the skill itself.
Credentials
The skill requests no environment variables or external credentials, which is proportionate. However it reads logs and project files (which may contain secrets) and runs git commits; lack of explicit safeguards for secret handling makes the file access potentially sensitive even if no credentials are requested.
Persistence & Privilege
The skill is not 'always:true' but allows autonomous invocation and instructs direct edits to 'safe_files' and immediate git commits. Autonomous modifications combined with heuristic-based identification of safe_files and execution of arbitrary notify_command expands the blast radius if the agent runs without human review. The SKILL.md does require proposals for config_files, but enforcement depends on correct classification and agent behavior.
What to consider before installing
This skill is mostly coherent with its stated purpose, but take precautions before enabling it: 1) Validate and explicitly supply the CLAUDE.md / configuration that defines agent_root, config_files, safe_files, review_file, etc., so the skill cannot guess and misclassify sensitive files. 2) Run it first in a sandbox or a disposable repository copy to confirm its behavior (commits, file edits, notify command). 3) Do not set notify_command to run privileged or network-facing commands unless you trust the exact content. 4) Ensure logs and project files don’t contain secrets; if they do, restrict the agent’s access. 5) If you want stricter control, require manual approval for A-level changes or disable autonomous invocation for this skill. 6) Verify the skill will not push commits to any remote (it only mentions committing locally), and consider protecting branches or disabling pushes in CI. These steps will reduce the risk of unintended file changes or command execution.Like a lobster shell, security has layers — review code before you run it.
latestvk975y0kjvdjh0fr676rvjmh6kh83z5jx
License
MIT-0
Free to use, modify, and redistribute. No attribution required.