Menu
Produce final ArkWeb archive or auto merge report from workflow outputs.
Install with Codex or Claude Copy this prompt, paste it into Codex, Claude, or another assistant, and let it review the skill page and install it for you.
Based on SOC occupation classification
Expert assistant for ArkTS-JS Interoperability in ArkCompiler (ArkTS runtime). 触发场景:修改/调试 ArkCompiler 互操作层代码(static_core/plugins/ets/runtime/interop_js/)、实现 ArkTS 与 JS 跨语言调用、处理 ETS 和 JS 之间的值转换(js_convert/JSRefConvert)、分析 Interop 内存泄漏与 GC 安全点、以及进行相关代码规范审查。
Guide for adding and maintaining ArkTS <-> JS/TS interoperability tests in ArkCompiler. 触发场景:在 plugins/ets/tests/interop_js/tests/ 目录下创建新的 ArkTS 与 JS/TS 互操作(Interop)测试用例、调试/维护已有 Interop 测试、编写 C++ 运行器(GTest runner)或声明文件(.d.ets)时。
Use when an OpenHarmony C++ change must be checked for call-chain completeness, especially for data propagation, IPC/proxy/stub paths, virtual overrides, callbacks, or dlopen/dlsym boundaries. Produces evidence tables and modification coverage matrices; the helper script only discovers candidate edges.
Use when the user wants to download OpenHarmony daily build images or flash them to a real device (DAYU200/RK3568 or others). Triggers on daily build, DAYU200, RK3568, flashing, burning, hdc reboot, upgrading firmware.
为 C/C++ 项目生成 LLVM libFuzzer FUZZ 测试用例、执行 26 条安全规范审查、生成语义化种子数据。 兼容 OpenHarmony / Linux / Android 构建系统。 触发关键词:fuzz 测试、生成 fuzzer、创建 fuzz 用例、fuzz 规范检查、fuzz_test、LLVMFuzzerTestOneInput、种子数据/corpus
ETS-JavaScript interop Promise bridging system in ArkCompiler. Use this skill when working on cross-language Promise conversion between ETS (ArkTS) and JavaScript, including JSConvertPromise Wrap/Unwrap, EtsPromise proxy creation, EtsPromiseRef bridging, CreatePromiseLink, OnJsPromiseCompleted callbacks, connectPromise, SettleJsPromise, PromiseInteropResolve/Reject, EtsAwaitPromise/AwaitProxyPromise, callback queue management, or any code under js_convert.h (Promise section), js_job_queue, ets_promise, ets_promise_ref, std_core_Promise.cpp, or PromiseInterop.ets. Also use when debugging cross-VM Promise state synchronization, coroutine suspension/resumption during await, or napi_deferred lifecycle issues.
| name | arkweb-security-patch-report |
| description | Produce final ArkWeb archive or auto merge report from workflow outputs. |
| metadata | {"descriptionZH":"ArkWeb 最终报告技能。区分集成工作流中的分析归档状态和结果归档状态。","tags":["ArkWeb","report","archive"]} |
用于 arkweb-security-patch-report-writer。
Use this skill in either report state of:
ArkWeb 本地 Issue 分析归档与上游安全补丁自动合入本技能支持同一集成工作流里的两种报告模式,必须先根据当前状态任务或已有产物判断报告模式,不能混用要求。
只汇总本地 issue 解析、patch 抓取、影响判定和归档产物:
01_issue_analysis.*、02_patch_fetch.*、03_impact_decision.*、04_final_archive.md/json、summary.* 和 patches/本模式尚未包含自动合入、冲突解决、代码审查、编译验证、编译修复、风险评估、提交上库或 GitCode PR。报告中不得把“未自动合入”“未编译测试”“未提交上库”写成最终未完成项、失败原因、风险或缺口;这些属于本工作流后续状态。
汇总既有归档输入和后续合入/验证/提交产物:
01_issue_analysis.*、02_patch_fetch.*、03_impact_decision.*、04_final_archive.md/json 和 patches/06_merge_result.md、07_conflict_resolution.md、08_code_review.md、09_build_verification.md、10_build_fix.md、11_risk_assessment.md、12_submit_result.md00_batch_plan.md/json、batch_status.md/json、issues/{issue_id}/06_merge_result.md、issues/{issue_id}/09_build_verification.md、issues/{issue_id}/11_risk_assessment.md、issues/{issue_id}/12_submit_result.md模式 A 写入每个 issue 目录:
.ace-outputs/{runId}/{issue_id}/04_final_archive.md.ace-outputs/{runId}/{issue_id}/04_final_archive.json.ace-outputs/{runId}/{issue_id}/summary.md.ace-outputs/{runId}/{issue_id}/summary.json模式 A 可先使用内置汇总脚本收集现有产物,避免运行时生成临时汇总脚本:
python3 skills/arkweb-security-patch-report/scripts/collect_archive_summary.py \
--project-root <context.codebase> \
--output-root <context.projectRoot>/.ace-outputs/<runId>
该脚本只读取 01/02/03 阶段已有 JSON 并向 stdout 输出汇总,不向运行根目录写文件,不重新生成漏洞事实、patch 文件列表或影响结论;agent 仍需基于汇总和各 issue 目录产物写出每个 issue 的 04_final_archive.* 与 summary.*。
也可使用已验证的归档生成脚本直接为每个 issue 写最终报告:
python3 skills/arkweb-security-patch-report/scripts/generate_final_archive.py \
--project-root <context.codebase> \
--output-root <context.projectRoot>/.ace-outputs/<runId> \
--issue-archive-root <local_issue_archive_dir>
该脚本只写 <context.projectRoot>/.ace-outputs/<runId>/{issue_id} 子目录下的 04_final_archive.md/json 与 summary.md/json,不得写运行根目录文件,也不得写到 ~/.aceharness/runs/<runId>/outputs/.ace-outputs;源码根使用 context.codebase。
模式 B 写入运行根目录:
.ace-outputs/{runId}/13_final_report.md.ace-outputs/{runId}/13_final_report.json批量模式还必须写入:
.ace-outputs/{runId}/issues/{issue_id}/13_final_report.md.ace-outputs/{runId}/13_batch_summary.json必须包含:
模式 A 必须包含:
context.codebase 工程影响结论、源码证据、责任田、影响特性、五性/RAM/ROM、是否建议保留、是否需要测试。模式 B 必须包含:
模式 B 批量输入时还必须包含:
blocked_overlap_conflict,列为人工处理项。字段归属边界:
01_issue_analysis.*、02_patch_fetch.*、03_impact_decision.*、04_final_archive.*、summary.* 或 patches/。