ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Ai Bug Fixer

v1.0.0

AI Bug修复助手 - 利用大模型自动诊断和修复代码中的bug。 当用户需要以下功能时触发此skill: (1) 自动诊断bug原因 (2) 生成修复代码 (3) 异常处理建议 (4) 回归测试生成 (5) 代码补丁生成

0· 12·0 current·0 all-time
by@shenmeng
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The name and description promise automated diagnosis, runtime analysis, and patch generation. The three included Python scripts, however, return hard-coded demo data and do not actually read log files, open source files, or accept/act on the CLI flags shown in SKILL.md. That is a substantive mismatch between claimed capabilities and the provided implementation.
Instruction Scope
SKILL.md instructs running scripts with arguments (e.g. --error, --log, --buggy/--fixed). The scripts do not parse these CLI arguments or access the filesystem; they simply return canned results. The instructions do not request any unrelated files or credentials, so there is no scope creep, but they are misleading about operational behavior.
Install Mechanism
No install spec, no downloads, and no additional binaries required. Being instruction-only with small local scripts minimizes installation risk.
Credentials
The skill declares no required environment variables, no credentials, and no config paths. The code does not access environment variables or network resources, so requested privileges are proportional (minimal).
Persistence & Privilege
always is false and the skill has no mechanism to persist or modify other skills or system-wide configuration. It does not request elevated presence or autonomy beyond normal invocation.
What to consider before installing
This skill appears safe from a security/exfiltration standpoint (no network calls, no credential access), but it is functionally misleading: the bundled scripts are demo stubs that return hard-coded results and do not actually parse CLI arguments, read logs, or apply patches. Before installing or relying on it: (1) don't assume it will analyze real projects — test it in a safe sandbox with representative inputs; (2) inspect and/or modify the scripts to implement real file I/O and CLI parsing if you intend to use it; (3) ask the publisher for provenance, tests, or example runs demonstrating real behavior; and (4) avoid running untrusted code on sensitive systems until you verify it does what you expect.

Like a lobster shell, security has layers — review code before you run it.

latestvk97cne3ah80t39kjzdbz5b5vw5844djz

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

SKILL.md

AI Bug Fixer

AI Bug修复助手 — 自动诊断和修复代码问题

核心能力

1. Bug诊断

  • 异常分析 - 解析错误堆栈
  • 日志分析 - 从日志定位问题
  • 代码审查 - 静态分析找bug
  • 运行时分析 - 动态行为分析
  • 根因定位 - 找出根本原因

2. 修复能力

  • 自动修复 - 生成修复代码
  • 补丁生成 - 生成diff补丁
  • 重构建议 - 结构性修复
  • 测试生成 - 验证修复的测试
  • 代码解释 - 解释修复原因

3. 支持问题类型

  • 空指针 - NullPointerException
  • 索引越界 - IndexOutOfBounds
  • 类型错误 - TypeError
  • 资源泄漏 - 内存/连接泄漏
  • 逻辑错误 - 业务逻辑bug
  • 并发问题 - 竞态条件/死锁

4. 修复流程

  • 问题识别 - 定位bug位置
  • 原因分析 - 分析根本原因
  • 方案生成 - 生成多个修复方案
  • 方案评估 - 选择最佳方案
  • 修复应用 - 应用修复代码

使用工作流

# 根据错误信息修复
python scripts/error_fixer.py --error "TypeError: ..." --file script.py

# 根据日志修复
python scripts/log_analyzer.py --log app.log --pattern ERROR

# 生成修复补丁
python scripts/patch_generator.py --buggy buggy.py --fixed fixed.py

让AI帮你 debug,事半功倍。

Files

4 total
Select a file
Select a file to preview.

Comments

Loading comments…