Cognitive Topology
v1.0.0Agent认知拓扑引擎。自动将复杂任务分裂为多个独立分支,并行执行后汇总整合。触发场景:(1)复杂问题需要多角度分析 (2)多独立子任务需要并行执行 (3)需要清晰追踪思维分支 (4)用户说"分叉"、"分支分析"、"多线程"时。使用 sessions_spawn 创建分支,分支结果写入 L2 文件,Main Se...
⭐ 0· 76·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The name/description (split tasks into branches, write L2 files, integrate results) matches the included scripts (ct_fork, ct_complete, ct_integrate, ct_archive, ct_status). There are no unrelated credentials or external services requested. One implementation detail: scripts use hard-coded /root/.openclaw paths while SKILL.md sometimes uses ~/.openclaw — this is functionally consistent but brittle and privileges/path-sensitive.
Instruction Scope
SKILL.md instructs the agent to spawn sessions and read/write L2 files under the workspace, which aligns with the scripts. Concerns: (1) path inconsistency between '~/.openclaw' in the documentation and '/root/.openclaw' in scripts may cause incorrect file locations or require root privileges; (2) the skill instructs agents to run local scripts and to cat workspace files — it does not request unrelated system files or network exfiltration, but it does direct writing and reading of persistent files in the agent workspace.
Install Mechanism
Instruction-only install with included Python scripts — no external downloads, package managers, or archives. Low install risk because nothing is fetched from arbitrary URLs.
Credentials
No environment variables or credentials are requested. Scripts operate on local filesystem only. Note: writing to /root/.openclaw/workspace and /root/.openclaw/workspace/MEMORY.md persists outputs — consider whether those files may include sensitive user data.
Persistence & Privilege
always:false and no cross-skill config writes. The skill creates/updates persistent files (topology_latest.json, branch L2 files, synthesis.md, MEMORY.md and daily snapshots) under the workspace; this is expected for a memory/aggregation tool but does mean outputs are stored permanently on disk and may accumulate sensitive content.
Assessment
This skill appears to do what it says, but review and possibly modify file paths and permissions before enabling: 1) Confirm the runtime user and adjust hard-coded '/root/.openclaw/...' paths to the correct non-root workspace (or accept that root is required). 2) Be aware that branch outputs and syntheses are appended to MEMORY.md and daily snapshot files — do not allow sensitive secrets in branch outputs. 3) Test in an isolated environment first to verify behavior (especially ct_archive which reads/appends to MEMORY.md and may assume the file exists). 4) If you don't want permanent storage, change the scripts to use a temporary workspace or add retention/cleanup logic. 5) If you rely on sessions_spawn, ensure your agent's spawning policy/privileges are appropriate.Like a lobster shell, security has layers — review code before you run it.
latestvk97214rynbj1kk8ftm1mc8vfeh84kya2
License
MIT-0
Free to use, modify, and redistribute. No attribution required.