Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Aprendizado Continuo
v1.0.0Captura erros, correções e aprendizados automaticamente. Promove melhorias para AGENTS.md, TOOLS.md e SKILL.md. Sistema de auto-melhoria em português.
⭐ 0· 62·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name and description claim automatic capture and promotion of errors into AGENTS.md, TOOLS.md and SKILL.md. However, the package contains no code or install steps — only prose describing a folder structure and example entries. There is no concrete mechanism (webhook, logger, file-watcher, or CLI tool) included to perform the "auto" behavior. Asking an agent to automatically modify those files is plausible, but the requested artifacts (none) are disproportionate to the claimed automation and leave substantial implementation discretion to the agent.
Instruction Scope
SKILL.md is high-level and vague: it defines a .learnings/ layout, capture triggers and example log format, and states that important learnings are "promoted" to AGENTS.md/TOOLS.md/SKILL.md. It does not specify boundaries, authorization, or where those target files live. That vagueness grants an agent broad discretion to read or write repository files and decide what counts as an error/learning — potentially modifying skill documentation or agent configuration without explicit constraints.
Install Mechanism
There is no install spec and no code to install. This is low-risk from an installation/execution vector perspective because nothing is downloaded or extracted by the registry package itself.
Credentials
The skill declares no required environment variables, credentials, or config paths. No direct requests for secrets are present. However, because the instructions encourage writing/promoting content into AGENTS.md/TOOLS.md/SKILL.md, an agent implementing this could be given file-system write access and potentially access other repository files; that operational privilege is not explicitly scoped by the skill.
Persistence & Privilege
always:false and normal agent invocation are set (no forced inclusion). Still, the skill's purpose is to alter documentation files (including SKILL.md), which implies the agent may be instructed to modify skill documentation or configuration. If the agent is allowed to run autonomously with write permissions, that increases blast radius. The skill itself does not request persistent system presence or special privileges, but its intended actions involve persistence (writing markdown files).
What to consider before installing
This skill is an instruction-only blueprint for an "auto-improvement" workflow rather than an implemented tool. Before installing or enabling it:
- Understand that there is no shipped code; any automation would be performed by the agent executing these vague instructions. Ask how the agent will detect errors and where it will write files.
- Restrict write access: ensure the agent cannot modify sensitive files or skill definitions unless you explicitly allow it. Specifically, review and sandbox any behavior that would write to AGENTS.md, TOOLS.md or SKILL.md (these can affect agent behavior and documentation).
- Prefer explicit rules: ask the author (or update SKILL.md) to specify exact capture sources, allowed file paths, formatting rules, and approval workflows for promoted changes.
- Verify provenance: metadata is inconsistent (top-level listing shows no homepage while clawhub.json points to a GitHub URL). Confirm the source repository and review commit history before trusting automatic promotions.
- If you want automation, implement or require a concrete, auditable component (script, webhook, or CI job) that you can inspect rather than relying on freeform agent actions.
Given the vagueness about what the agent should do and where it may write, proceed with caution and limit autonomous write permissions until you have a concrete, reviewed implementation.Like a lobster shell, security has layers — review code before you run it.
latestvk9750rsnzz2v23bbm14rx4zb5n83csfz
License
MIT-0
Free to use, modify, and redistribute. No attribution required.