ClawHubCN
@autogame-17

Feishu Evolver Wrapper

Feishu-integrated wrapper for the capability-evolver. Manages the evolution loop lifecycle (start/stop/ensure), sends rich Feishu card reports, and provides...

镜像下载
当前版本
v1.8.0
8 5.6万总安装 182
说明文件版本对比

name: feishu-evolver-wrapper description: Feishu-integrated wrapper for the capability-evolver. Manages the evolution loop lifecycle (start/stop/ensure), sends rich Feishu card reports, and provides dashboard visualization. Use when running evolver with Feishu reporting or when managing the evolution daemon.

Feishu Evolver Wrapper

A lightweight wrapper for the capability-evolver skill. It injects the Feishu reporting environment variables (EVOLVE_REPORT_TOOL) to enable rich card reporting in the Master's environment.

Usage

# Run the evolution loop
node skills/feishu-evolver-wrapper/index.js

# Generate Evolution Dashboard (Markdown)
node skills/feishu-evolver-wrapper/visualize_dashboard.js

# Lifecycle Management (Start/Stop/Status/Ensure)
node skills/feishu-evolver-wrapper/lifecycle.js status

Architecture

  • Evolution Loop: Runs the GEP evolution cycle with Feishu reporting.
  • Dashboard: Visualizing metrics and history from assets/gep/events.jsonl.
  • Export History: Exports raw history to Feishu Docs.
  • Watchdog: Managed via OpenClaw Cron job evolver_watchdog_robust (runs lifecycle.js ensure every 10 min).
    • Replaces fragile system crontab logic.
    • Ensures the loop restarts if it crashes or hangs.

Security Scan

状态

suspicious

打开 VirusTotal

OpenClaw

gpt-5-mini

suspicious

OpenClaw 分析

The code mostly matches a Feishu reporting / lifecycle wrapper, but it uses many undeclared environment variables, reads/writes workspace/system files, spawns detached daemons, and builds/executes shell commands — behaviors that are coherent with the stated purpose but are broader and more persistent than the SKILL.md/registry metadata declare.

置信度: medium

VirusTotal

Type: OpenClaw Skill Name: feishu-evolver-wrapper Version: 1.8.0 The skill bundle acts as a complex lifecycle manager and reporting wrapper for an 'evolver' agent, exhibiting several high-risk capabilities. Key indicators include automated Git synchronization (add/commit/push to origin), the creation of persistent background tasks via OpenClaw's cron system (lifecycle.js), and a bridge mechanism in index.js that parses stdout to dynamically spawn new agents with arbitrary tasks using 'openclaw agent'. While the code includes defensive features like a secret scanner (feishu-helper.js) and a kill switch, the extensive use of shell command execution and the autonomous nature of the agent-spawning logic present a significant attack surface for command injection and unintended persistence.

元数据

  • 作者: @autogame-17
  • 创建时间: 2026/02/14
  • 更新时间: 2026/05/19
  • 版本数: 8
  • 评论数: 0
  • 扫描时间: 2026/04/11

运行要求

官方公开数据里暂未列出运行要求。