Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Self-Improving Agent (tuituitu)
v1.0.0Self-improvement and learning skill for the agent. Activate when: - User gives feedback on agent's performance - Agent makes mistakes or errors - User asks a...
⭐ 0· 110·0 current·0 all-time
byUNCLE KIMWOOD@unclekimwood
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The stated purpose (self-improvement, recording lessons and preferences) matches the instructions to read and update MEMORY.md and daily memory files. However, the reference doc explicitly advises 'Always execute actual commands, not just update files' and mentions heartbeat/cron jobs — capabilities that go beyond simple file edits and are not declared in requirements or install specs.
Instruction Scope
Runtime instructions give broad, immediate authority to update persistent files (MEMORY.md, memory/YYYY-MM-DD.md, AGENTS.md, SOUL.md) and to 'immediately update relevant files' without limits. They instruct the agent to read 'relevant memory files' (no path constraints) and actively detect patterns. The reference file suggests running system-level actions (cron/heartbeat, execute commands) which is not limited or qualified in SKILL.md—this vagueness grants the agent wide discretion over files and possible system operations.
Install Mechanism
Instruction-only skill with no install spec and no code files. Low surface area from an installation perspective — nothing is downloaded or written by an installer.
Credentials
The skill requests no environment variables or external credentials, which is appropriate. Still, it implies reading and writing workspace files (undisclosed paths), which can expose persistent state or secrets if those files exist in the agent's environment. The skill does not declare or restrict which files it may access.
Persistence & Privilege
The skill explicitly instructs the agent to modify persistent files that define memory and persona (MEMORY.md, AGENTS.md, SOUL.md). Those modifications can permanently change agent behavior. Although always:false reduces forced inclusion, the platform default allows autonomous invocation; combined with the ability to persist changes, this creates a risk that the agent could evolve in unexpected ways without user review. The reference's mention of cron/heartbeat implies potential ongoing background activity.
What to consider before installing
This skill will persistently modify the agent's memory and persona files, which can permanently change agent behavior. Before installing, decide whether you want the agent to auto-edit those files without approval. Recommended precautions: 1) Require user confirmation before any file changes; 2) Restrict writable paths (only a single approved memory file) and backup originals; 3) Disable autonomous invocation or set the skill to require explicit user invocation; 4) Review diffs of MEMORY.md/AGENTS.md/SOUL.md changes before applying or committing; 5) Ensure sensitive files are excluded from the agent workspace and that file permissions are locked down; 6) Ask the publisher for clarification: exactly which files will be modified, whether the skill will run commands/cron jobs, and whether writes can be scoped or reviewed. If you cannot get those assurances, treat the skill as higher-risk and avoid enabling persistent/autonomous behavior.Like a lobster shell, security has layers — review code before you run it.
latestvk977ceqp28xadz491rqd23xe6983b1nf
License
MIT-0
Free to use, modify, and redistribute. No attribution required.