Feishu Evolver Wrapper
(Depreciated: This skill is no longer maintained; its related functions have been absorbed by the Evolver main body.) Feishu-integrated wrapper for the capability-evolver. Manages the evolution loop lifecycle (start/stop/ensure), sends rich Feishu card reports, and provides...
暂无可比对内容
需要至少一个上一版本,才能生成差异对比。
Security Scan
状态
suspicious
OpenClaw
gpt-5.5
OpenClaw 分析
This skill has a real Feishu/evolver purpose, but it also gives itself broad autonomous powers to run agents, persist as a watchdog, modify skills, and push repository changes.
置信度: high
VirusTotal
Type: OpenClaw Skill Name: feishu-evolver-wrapper Version: 1.8.0 The skill bundle acts as a complex lifecycle manager and reporting wrapper for an 'evolver' agent, exhibiting several high-risk capabilities. Key indicators include automated Git synchronization (add/commit/push to origin), the creation of persistent background tasks via OpenClaw's cron system (lifecycle.js), and a bridge mechanism in index.js that parses stdout to dynamically spawn new agents with arbitrary tasks using 'openclaw agent'. While the code includes defensive features like a secret scanner (feishu-helper.js) and a kill switch, the extensive use of shell command execution and the autonomous nature of the agent-spawning logic present a significant attack surface for command injection and unintended persistence.