📦 bug-fixing — 零回归修虫

v1.0.3

零回归 Bug 修复工作流：分级→复现→根因→影响分析→修复→验证→知识沉淀→自我反思，一键执行，确保修复不引入新问题。

0· 480·4 当前·4 累计

by @tinkcarlos (TinkCarlos)

开发工具自动化测试工具工作流

下载技能包

最后更新

2026/3/6

安全扫描

VirusTotal

无害

查看报告

OpenClaw

安全

medium confidence

NULL

评估建议

This skill appears to do what it says: search the codebase, run tests/linters, clear caches, restart services, and update project docs. Those actions require filesystem access and the ability to run commands. Before enabling: 1) Ensure the agent runs with limited privileges or in an isolated/test environment (so restarts and deletes don't affect production). 2) Remove or vault any secrets from project .env* files you do not want inspected, because the workflow explicitly recommends checking all ...

详细分析 ▾

✓ 用途与能力

Name/description (zero-regression bug-fix workflow) matches the instructions and reference docs: searching code, reproducing bugs, running tests, performing RCA, minimal fixes, and updating knowledge files. The declared lack of required env vars/binaries and absence of install steps is consistent with an instruction-only, repo-scoped troubleshooting workflow.

ℹ 指令范围

SKILL.md and reference files explicitly direct the agent to read/write project files, run linters/tests (pytest, mypy, npm, ruff), run searches (rg), delete caches (find .pyc, __pycache__), restart processes, gather runtime evidence (screenshots/DevTools traces), and update knowledge/bug-records. These actions are appropriate for bug fixing, but they give the agent broad file-system and execution scope within the project and may touch environment/config files (e.g., .env*) which can contain secrets. The instructions do not direct network exfiltration, but they do permit arbitrary command execution via the 'execute' tool.

✓ 安装机制

No install spec and no code files — instruction-only. This is lowest-risk from an install/download perspective; nothing will be written to disk by an installer beyond what the agent itself does at runtime when following instructions.

ℹ 凭证需求

The skill declares no required environment variables or credentials (proportional). However the reference docs and workflow require scanning and possibly reading multiple .env* files and other config files when diagnosing configuration bugs. Access to those files is relevant to the task but can expose secrets; the skill does not request remote credentials or unrelated secrets.

✓ 持久化与权限

always:false and normal model invocation are used. The skill does not ask for permanent presence or modify other skills' configs. It does instruct operations that modify local state (writing knowledge files, deleting caches, restarting services), which is appropriate for a bug-fix workflow but should be permitted consciously by the user.

安全有层次，运行前请审查代码。

运行时依赖

无特殊依赖

版本

latestv1.0.32026/3/3

NULL

● 无害

安装命令

点击复制

官方npx clawhub@latest install bug-fixing

镜像加速npx clawhub@latest install bug-fixing --registry https://cn.longxiaskill.com

数据来源：ClawHub ↗ · 中文优化：龙虾技能库