Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

bianhaifeng789-hue/skills-experimental/auto-mode-allowlist-pattern

Name: skills-experimental/auto-mode-allowlist-pattern
Author: bianhaifeng789-hue

skills-experimental/auto-mode-allowlist-pattern/SKILL.md

npx skillsauth add bianhaifeng789-hue/openclaw-config skills-experimental/auto-mode-allowlist-pattern

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Auto Mode Allowlist Pattern Skill

Auto Mode Allowlist Pattern - SAFE_YOLO_ALLOWLISTED_TOOLS Set + read-only file ops + search tools + task management + plan mode UI + swarm coordination + misc safe + ant-only conditional spread + feature DCE + isAutoModeAllowlistedTool + YOLO_CLASSIFIER_TOOL_NAME。

功能概述

从Claude Code的utils/permissions/classifierDecision.ts提取的Auto mode allowlist模式，用于OpenClaw的auto mode安全工具列表。

核心机制

SAFE_YOLO_ALLOWLISTED_TOOLS Set

const SAFE_YOLO_ALLOWLISTED_TOOLS = new Set([
  FILE_READ_TOOL_NAME,
  GREP_TOOL_NAME,
  GLOB_TOOL_NAME,
  // ... 30+ tools
])
// SAFE_YOLO_ALLOWLISTED_TOOLS
# Set of tool names
# Skip classifier
# Safe operations

read-only file ops

// Read-only file operations
FILE_READ_TOOL_NAME,
// Read-only file ops
# No write/edit
# Safe to auto-allow

search tools

// Search / read-only
GREP_TOOL_NAME,
GLOB_TOOL_NAME,
LSP_TOOL_NAME,
TOOL_SEARCH_TOOL_NAME,
LIST_MCP_RESOURCES_TOOL_NAME,
'ReadMcpResourceTool',
// Search tools
# Grep, Glob, LSP
# Read-only search
# Safe operations

task management

// Task management (metadata only)
TODO_WRITE_TOOL_NAME,
TASK_CREATE_TOOL_NAME,
TASK_GET_TOOL_NAME,
TASK_UPDATE_TOOL_NAME,
TASK_LIST_TOOL_NAME,
TASK_STOP_TOOL_NAME,
TASK_OUTPUT_TOOL_NAME,
// Task management
# Metadata only
# No file writes
# Safe operations

plan mode UI

// Plan mode / UI
ASK_USER_QUESTION_TOOL_NAME,
ENTER_PLAN_MODE_TOOL_NAME,
EXIT_PLAN_MODE_TOOL_NAME,
// Plan mode UI
# Ask user
# Enter/exit plan
# Safe UI tools

swarm coordination

// Swarm coordination (internal mailbox/team state only — teammates have
// their own permission checks, so no actual security bypass).
TEAM_CREATE_TOOL_NAME,
TEAM_DELETE_TOOL_NAME,
SEND_MESSAGE_TOOL_NAME,
// Swarm coordination
# Internal state
# No security bypass
# Teammates have own checks

misc safe

// Misc safe
SLEEP_TOOL_NAME,
// Misc safe
# Sleep is safe
# No side effects

ant-only conditional spread

// Ant-only safe tools (gates mirror tools.ts)
...(TERMINAL_CAPTURE_TOOL_NAME ? [TERMINAL_CAPTURE_TOOL_NAME] : []),
...(OVERFLOW_TEST_TOOL_NAME ? [OVERFLOW_TEST_TOOL_NAME] : []),
...(VERIFY_PLAN_EXECUTION_TOOL_NAME ? [VERIFY_PLAN_EXECUTION_TOOL_NAME] : []),
// Ant-only conditional spread
# feature flags
# DCE in external builds
# Conditional require

feature DCE

const TERMINAL_CAPTURE_TOOL_NAME = feature('TERMINAL_PANEL')
  ? (require('../../tools/TerminalCaptureTool/prompt.js')).TERMINAL_CAPTURE_TOOL_NAME
  : null
// feature DCE
# feature('TERMINAL_PANEL')
# conditional require
# null in external builds

isAutoModeAllowlistedTool

export function isAutoModeAllowlistedTool(toolName: string): boolean {
  return SAFE_YOLO_ALLOWLISTED_TOOLS.has(toolName)
}
// isAutoModeAllowlistedTool
# Set.has() check
# Skip classifier
# Fast path

YOLO_CLASSIFIER_TOOL_NAME

// Internal classifier tool
YOLO_CLASSIFIER_TOOL_NAME,
// YOLO_CLASSIFIER_TOOL_NAME
# Internal tool
# classify_result
# Safe by definition

实现建议

OpenClaw适配

allowlistSet: SAFE_YOLO_ALLOWLISTED_TOOLS Set pattern
conditionalSpread: ...(toolName ? [toolName] : []) pattern
featureDCE: feature() ? require() : null pattern
isAllowlisted: Set.has() check pattern
safeCategories: read-only/search/task/plan/swarm/misc pattern

状态文件示例

{
  "allowlistedTools": ["FileRead", "Grep", "Glob", "TaskList"],
  "count": 30,
  "toolName": "FileRead",
  "isAllowlisted": true
}

关键模式

Set of Safe Tool Names

new Set([FILE_READ_TOOL_NAME, GREP_TOOL_NAME, ...]) → safe tools → skip classifier → fast path
# Set of safe tool names
# 30+ tools
# skip classifier
# fast path

Conditional Spread Ant-Only

...(TERMINAL_CAPTURE_TOOL_NAME ? [TERMINAL_CAPTURE_TOOL_NAME] : []) → conditional spread → ant-only → DCE in external
# conditional spread ant-only
# ...(toolName ? [toolName] : [])
# DCE in external builds

feature() Conditional Require

feature('TERMINAL_PANEL') ? require('./prompt.js').TOOL_NAME : null → feature DCE → null in external → ant-only
# feature() conditional require
# feature flag
# null in external builds

Set.has() Fast Path Check

SAFE_YOLO_ALLOWLISTED_TOOLS.has(toolName) → isAutoModeAllowlistedTool → skip classifier → fast path → safe
# Set.has() fast path check
# O(1) lookup
# skip classifier

Categories: Read/Search/Task/Plan/Swarm/Misc

read-only file ops + search tools + task management + plan mode UI + swarm coordination + misc safe → 6 categories → safe tools → allowlist
# categories: read/search/task/plan/swarm/misc
# 6 categories
# safe tools

借用价值

⭐⭐⭐⭐⭐ Set of safe tool names pattern
⭐⭐⭐⭐⭐ Conditional spread ant-only pattern
⭐⭐⭐⭐⭐ feature() conditional require pattern
⭐⭐⭐⭐⭐ Set.has() fast path check pattern
⭐⭐⭐⭐ Categories: read/search/task/plan/swarm/misc pattern

来源

Claude Code: utils/permissions/classifierDecision.ts (83 lines)
分析报告: P59-2

bianhaifeng789-hue/skills-experimental/auto-mode-allowlist-pattern

skills-experimental/auto-mode-allowlist-pattern/SKILL.md

# Auto Mode Allowlist Pattern Skill Auto Mode Allowlist Pattern - SAFE_YOLO_ALLOWLISTED_TOOLS Set + read-only file ops + search tools + task management + plan mode UI + swarm coordination + misc safe + ant-only conditional spread + feature DCE + isAutoModeAllowlistedTool + YOLO_CLASSIFIER_TOOL_NAME。 ## 功能概述从Claude Code的utils/permissions/classifierDecision.ts提取的Auto mode allowlist模式，用于OpenClaw的auto mode安全工具列表。 ## 核心机制 ### SAFE_YOLO_ALLOWLISTED_TOOLS Set ```typescript const SAFE_YOLO_ALLOWL

tools

Updated Apr 20, 2026

$ install --global

skillsauth

npx skillsauth add bianhaifeng789-hue/openclaw-config skills-experimental/auto-mode-allowlist-pattern

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 20, 2026, 3:05 PM6.3s1 file scanned

SKILL.md

Auto Mode Allowlist Pattern Skill

功能概述

从Claude Code的utils/permissions/classifierDecision.ts提取的Auto mode allowlist模式，用于OpenClaw的auto mode安全工具列表。

核心机制

SAFE_YOLO_ALLOWLISTED_TOOLS Set

const SAFE_YOLO_ALLOWLISTED_TOOLS = new Set([
  FILE_READ_TOOL_NAME,
  GREP_TOOL_NAME,
  GLOB_TOOL_NAME,
  // ... 30+ tools
])
// SAFE_YOLO_ALLOWLISTED_TOOLS
# Set of tool names
# Skip classifier
# Safe operations

read-only file ops

// Read-only file operations
FILE_READ_TOOL_NAME,
// Read-only file ops
# No write/edit
# Safe to auto-allow

search tools

// Search / read-only
GREP_TOOL_NAME,
GLOB_TOOL_NAME,
LSP_TOOL_NAME,
TOOL_SEARCH_TOOL_NAME,
LIST_MCP_RESOURCES_TOOL_NAME,
'ReadMcpResourceTool',
// Search tools
# Grep, Glob, LSP
# Read-only search
# Safe operations

task management

// Task management (metadata only)
TODO_WRITE_TOOL_NAME,
TASK_CREATE_TOOL_NAME,
TASK_GET_TOOL_NAME,
TASK_UPDATE_TOOL_NAME,
TASK_LIST_TOOL_NAME,
TASK_STOP_TOOL_NAME,
TASK_OUTPUT_TOOL_NAME,
// Task management
# Metadata only
# No file writes
# Safe operations

plan mode UI

// Plan mode / UI
ASK_USER_QUESTION_TOOL_NAME,
ENTER_PLAN_MODE_TOOL_NAME,
EXIT_PLAN_MODE_TOOL_NAME,
// Plan mode UI
# Ask user
# Enter/exit plan
# Safe UI tools

swarm coordination

// Swarm coordination (internal mailbox/team state only — teammates have
// their own permission checks, so no actual security bypass).
TEAM_CREATE_TOOL_NAME,
TEAM_DELETE_TOOL_NAME,
SEND_MESSAGE_TOOL_NAME,
// Swarm coordination
# Internal state
# No security bypass
# Teammates have own checks

misc safe

// Misc safe
SLEEP_TOOL_NAME,
// Misc safe
# Sleep is safe
# No side effects

ant-only conditional spread

// Ant-only safe tools (gates mirror tools.ts)
...(TERMINAL_CAPTURE_TOOL_NAME ? [TERMINAL_CAPTURE_TOOL_NAME] : []),
...(OVERFLOW_TEST_TOOL_NAME ? [OVERFLOW_TEST_TOOL_NAME] : []),
...(VERIFY_PLAN_EXECUTION_TOOL_NAME ? [VERIFY_PLAN_EXECUTION_TOOL_NAME] : []),
// Ant-only conditional spread
# feature flags
# DCE in external builds
# Conditional require

feature DCE

const TERMINAL_CAPTURE_TOOL_NAME = feature('TERMINAL_PANEL')
  ? (require('../../tools/TerminalCaptureTool/prompt.js')).TERMINAL_CAPTURE_TOOL_NAME
  : null
// feature DCE
# feature('TERMINAL_PANEL')
# conditional require
# null in external builds

isAutoModeAllowlistedTool

export function isAutoModeAllowlistedTool(toolName: string): boolean {
  return SAFE_YOLO_ALLOWLISTED_TOOLS.has(toolName)
}
// isAutoModeAllowlistedTool
# Set.has() check
# Skip classifier
# Fast path

YOLO_CLASSIFIER_TOOL_NAME

// Internal classifier tool
YOLO_CLASSIFIER_TOOL_NAME,
// YOLO_CLASSIFIER_TOOL_NAME
# Internal tool
# classify_result
# Safe by definition

实现建议

OpenClaw适配

allowlistSet: SAFE_YOLO_ALLOWLISTED_TOOLS Set pattern
conditionalSpread: ...(toolName ? [toolName] : []) pattern
featureDCE: feature() ? require() : null pattern
isAllowlisted: Set.has() check pattern
safeCategories: read-only/search/task/plan/swarm/misc pattern

状态文件示例

{
  "allowlistedTools": ["FileRead", "Grep", "Glob", "TaskList"],
  "count": 30,
  "toolName": "FileRead",
  "isAllowlisted": true
}

关键模式

Set of Safe Tool Names

new Set([FILE_READ_TOOL_NAME, GREP_TOOL_NAME, ...]) → safe tools → skip classifier → fast path
# Set of safe tool names
# 30+ tools
# skip classifier
# fast path

Conditional Spread Ant-Only

...(TERMINAL_CAPTURE_TOOL_NAME ? [TERMINAL_CAPTURE_TOOL_NAME] : []) → conditional spread → ant-only → DCE in external
# conditional spread ant-only
# ...(toolName ? [toolName] : [])
# DCE in external builds

feature() Conditional Require

feature('TERMINAL_PANEL') ? require('./prompt.js').TOOL_NAME : null → feature DCE → null in external → ant-only
# feature() conditional require
# feature flag
# null in external builds

Set.has() Fast Path Check

SAFE_YOLO_ALLOWLISTED_TOOLS.has(toolName) → isAutoModeAllowlistedTool → skip classifier → fast path → safe
# Set.has() fast path check
# O(1) lookup
# skip classifier

Categories: Read/Search/Task/Plan/Swarm/Misc

read-only file ops + search tools + task management + plan mode UI + swarm coordination + misc safe → 6 categories → safe tools → allowlist
# categories: read/search/task/plan/swarm/misc
# 6 categories
# safe tools

借用价值

⭐⭐⭐⭐⭐ Set of safe tool names pattern
⭐⭐⭐⭐⭐ Conditional spread ant-only pattern
⭐⭐⭐⭐⭐ feature() conditional require pattern
⭐⭐⭐⭐⭐ Set.has() fast path check pattern
⭐⭐⭐⭐ Categories: read/search/task/plan/swarm/misc pattern

来源

Claude Code: utils/permissions/classifierDecision.ts (83 lines)
分析报告: P59-2

Related Skills

bianhaifeng789-hue/iaa-feishu-reporting

business

VerifiedTrustedCommunity

IAA 日报飞书输出能力。支持把固定 CSV 模板一键转换成： - 中文运营结论 - 飞书卡片 JSON - 飞书发送载荷 Use when: - 需要把 IAA 日报直接发到飞书 - 需要从 CSV 一键生成运营日报

SKILL.mdUpdated Apr 21, 2026

bianhaifeng789-hue/iaa-feishu-reporting

bianhaifeng789-hue/iaa-daily-report-model

data-ai

VerifiedTrustedCommunity

IAA日报分析模型功能： - 渠道日报自动分析 - 小时级+日级ROI联动判断 - 按地区输出加量/降量/停投建议 - 按产品类型输出阈值 - 自动识别利润区/观察区/止损区 Use when: - 分析每天投放数据 - 生成运营日报结论 - 判断是否加量/降量/停投 - 对比美加澳/日韩表现 Keywords: - 日报模型, 投放日报, 加量, 降量, 停投, ROI日报, 分地区分析

SKILL.mdUpdated Apr 21, 2026

bianhaifeng789-hue/iaa-daily-report-model

bianhaifeng789-hue/iaa-daily-fixed-template

data-ai

VerifiedTrustedCommunity

IAA固定日报分析模板功能： - 固定字段模板（可直接贴每天数据） - 自动输出总盘结论 - 自动输出美加澳/日韩结论 - 自动给出加量/降量/停投建议 - 适配文件修复/清理两类产品 Use when: - 需要固定日报格式 - 每天复盘渠道表现 - 给运营团队出统一结论 Keywords: - 固定模板, 日报模板, ROI模板, IAA日报, 运营模板

SKILL.mdUpdated Apr 21, 2026

bianhaifeng789-hue/iaa-daily-fixed-template

bianhaifeng789-hue/skills-experimental/hyperlink-pool-pattern

development

VerifiedTrustedCommunity

# HyperlinkPool Pattern Skill HyperlinkPool Pattern - HyperlinkPool class + strings array + stringMap + Index 0 no hyperlink + intern(hyperlink) + get(id) + undefined handling + 5-minute reset + OSC8 hyperlink interning。 ## 功能概述从Claude Code的ink/screen.ts提取的HyperlinkPool模式，用于OpenClaw的OSC8超链接池管理。 ## 核心机制 ### HyperlinkPool Class ```typescript export class HyperlinkPool { private strings: string[] = [''] // Index 0 = no hyperlink private stringMap = new Map<string, number>() // strings

SKILL.mdUpdated Apr 21, 2026

bianhaifeng789-hue/skills-experimental/hyperlink-pool-pattern

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/bianhaifeng789-hue/openclaw-config.git

# Copy into Claude Code skills folder (global)
cp -r openclaw-config/skills-experimental/auto-mode-allowlist-pattern ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

bianhaifeng789-hue/openclaw-config

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT