根据消息命令自动路由到子 Agent。**Agent 应该:收到消息时首先检查是否包含 /coder、/writer 等命令,如果是则调用 sessions_spawn 启动对应子 Agent。**
Security Analysis
medium confidenceThe skill's code and instructions are internally consistent with an auto-routing router: it inspects messages, matches commands/rules, reads local agent configs, and prepares spawn information; no unrelated credentials or external downloads are requested — but it reads files under your home workspace and writes logs/config, and a pre-scan found unicode-control characters in SKILL.md, so review those parts before installing.
Name/description match the code and SKILL.md. The code looks for slash commands, matches rules in config.json, and prepares information to start sub-Agents. Requested binaries (python3) are appropriate. No unrelated env vars, binaries, or external APIs are required.
Instructions and code are narrowly scoped to detecting commands and routing. The code does read ~/.openclaw/workspace/agents (agent configs and SOUL.md) and returns a system_prompt; it does not itself call an external 'sessions_spawn' service — SKILL.md states sessions_spawn is used by the host to actually spawn child agents. The skill writes/updates its own config.json (save_bot_name) and writes logs to /tmp/auto-route-handler.log. If agent config files under your workspace contain sensitive information, this skill will read them.
There is no install spec (instruction-only skill with bundled Python code). No network downloads or third-party package installs are performed by the skill itself.
The skill requires no secrets or environment variables. However it accesses user-local paths: it reads ~/.openclaw/workspace/agents and SOUL.md files and reads/writes its own config.json in the skill directory and the /tmp log file. Accessing the workspace to enumerate/from agents is consistent with finding available agents, but could expose sensitive fields if other agent configs contain tokens or secrets.
always:false and no special privileges. The skill modifies only its own config.json (to save discovered bot names) and writes logs to /tmp. It does not attempt to modify other skills' configs or system-wide settings.
Guidance
This skill appears to do what it says: detect slash commands, match rules, and prepare child-Agent sessions. Before installing, please: 1) Inspect agent configs under ~/.openclaw/workspace/agents — ensure they don’t contain API keys or secrets that you don't want read. The skill will read those files (and SOUL.md) to build system prompts. 2) Review the skill's SKILL.md for invisible unicode/control characters (pre-scan flagged unicode-control-chars). 3) If you dislike the skill auto-saving discovered bot names, note that it writes to its own config.json via save_bot_name; you can disable or audit that behavior by editing the code. 4) Logs go to /tmp/auto-route-handler.log and may include message text (sometimes truncated) — monitor or rotate that file if privacy is a concern. 5) Understand that this skill prepares spawn metadata but relies on the host/platform (sessions_spawn) to actually create child agents; confirm your platform's spawning/auth model. If any agent configs contain secrets, do not enable this skill until those files are sanitized.
Latest Release
v1.0.0
auto-agent-router 1.0.0 - Initial release of the auto-agent-router skill. - Routes messages to specialized sub-Agents based on strict command detection at the message start (e.g., /coder, /writer). - Supports concurrent session spawning for different tasks and clean session isolation. - Configuration and routing rules managed via config.json; supports custom commands and agent types. - Includes command trigger detection and logging for transparency and debugging. - Does not route if commands are not at the beginning of the message or not recognized.
More by @jiangzhiyu
Published by @jiangzhiyu on ClawHub
