Improvement Executor
v1.1.1当需要把已批准的改进候选应用到目标文件、回滚之前的变更、或预览变更效果时使用。支持 4 种 action(append/replace/insert_before/update_yaml),每次变更前自动备份。不用于打分(用 improvement-discriminator)或门禁验证(用 improvemen...
⭐ 0· 92·1 current·1 all-time
by_silhouette@lanyasheng
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (apply improvements, backup, rollback) matches the provided scripts and tests. The action handlers (append/replace/insert/update_yaml) and receipt/rollback semantics are implemented in scripts/execute.py and scripts/rollback.py.
Instruction Scope
SKILL.md and the code restrict behavior to single-file content edits, dry-run previews, and producing receipts/backups. One notable detail: rollback.py searches a default shared path (~/.openclaw/shared-context/...) using OPENCLAW_ROOT if set — this means the script can read receipts/execution artifacts from that shared area if present. That is plausible for this skill but is not declared in requires.config; users should be aware the scripts operate on arbitrary filesystem paths supplied by the ranking/receipt artifacts.
Install Mechanism
No install spec; this is a code-and-instructions bundle and relies on standard Python. No downloads or external installers are present. The code imports local repo helpers (lib.common, lib.state_machine) which is expected for in-repo skills.
Credentials
The skill declares no required env vars or credentials, which aligns with its purpose. rollback.py does read OPENCLAW_ROOT (optional) to compute a default receipts root; this env var is not declared in metadata. No network endpoints, tokens, or unrelated credentials are requested.
Persistence & Privilege
always is false and the skill does not request elevated platform privileges. It writes backups and may create pre-rollback copies in the target file's directory or under the skill state root; that is appropriate for its function.
Assessment
This skill appears to do exactly what it says: edit single files (markdown/YAML frontmatter), create backups, and support rollbacks. Before installing or running it: 1) Inspect the ranking.json / receipt you pass in so the target_path and candidate action are what you expect (a candidate can point at any file path). 2) Always run --dry-run for both execute and rollback to verify diffs before changing files. 3) Note rollback.py will look under a default shared root (~/.openclaw/...) and respect OPENCLAW_ROOT if set — review that location for receipts/executions if you rely on automated rollbacks. 4) Because this skill writes files, avoid running it with elevated privileges or against system-critical paths. If you want additional assurance, review the remaining (truncated) parts of execute.py to confirm backups are created before writes (the SKILL.md claims they are).Like a lobster shell, security has layers — review code before you run it.
latestvk97512wjt1sqhhfekc7y46rzsn84btsb
License
MIT-0
Free to use, modify, and redistribute. No attribution required.