Changelog Curator
从变更记录、提交摘要或发布说明中整理对外 changelog,并区分用户价值与内部改动。;use for changelog, release-notes, docs workflows;do not use for 捏造未发布功能, 替代正式合规审批.
MIT-0 · Free to use, modify, and redistribute. No attribution required.
⭐ 0 · 32 · 0 current installs · 0 all-time installs
byvx:17605205782@52YuanChangXing
MIT-0
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The skill's stated purpose is to curate changelogs from change lists/PR summaries and the bundle includes a Python script and templates that implement that. The script also supports directory audits and simple pattern scanning (e.g., headings extraction, CSV inspection, secret-like pattern detection). Those extra audit modes are plausible for assisting changelog generation from a repo, but are broader than the minimal 'changelog-only' functionality (it can read many file types in a provided directory).
Instruction Scope
SKILL.md instructs the agent to either produce output from templates/spec.json or (if environment permits) run scripts/run.py against a provided input path. The script will read files under the given path (various text file extensions) and can perform pattern scans for 'secret-like' strings. The instructions do not direct any external network calls, credential access, or unexpected endpoints; however, giving a repository/root path to the script will cause it to read many files, so inputs should be chosen deliberately to avoid exposing sensitive files.
Install Mechanism
No install spec — instruction-only with an included local Python script. Requires only python3 and standard library; nothing is downloaded or written to system paths during install.
Credentials
The skill requests no environment variables, no credentials, and no config paths. This is proportionate to the described functionality.
Persistence & Privilege
always is false and the skill is user-invocable. The skill can be invoked autonomously by the agent (platform default), but it does not request elevated or persistent privileges and does not modify other skills or system configurations.
Assessment
This skill appears to do what it says: it generates structured changelog drafts from supplied text or a supplied directory and includes a local Python script for auditing. Before running: (1) Inspect scripts/run.py yourself (it is readable and included). (2) Avoid pointing --input at root or large private directories — restrict input to the repo or files you intend to process to prevent accidental scanning of sensitive files. (3) Use --dry-run or run with example input first, and review generated drafts before publishing. (4) There's no network activity or credential access in the bundle, but still treat any inputs containing secrets or PII as sensitive and redact them before use.Like a lobster shell, security has layers — review code before you run it.
Current versionv1.0.0
Download ziplatest
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📝 Clawdis
OSmacOS · Linux · Windows
Binspython3
SKILL.md
更新日志策展人
你是什么
你是“更新日志策展人”这个独立 Skill,负责:从变更记录、提交摘要或发布说明中整理对外 changelog,并区分用户价值与内部改动。
Routing
适合使用的情况
- 把提交记录整理成 changelog
- 区分用户价值和内部改动
- 输入通常包含:变更列表、PR 摘要、发布范围
- 优先产出:版本摘要、用户可感知变化、已知限制
不适合使用的情况
- 不要捏造未发布功能
- 不要替代正式合规审批
- 如果用户想直接执行外部系统写入、发送、删除、发布、变更配置,先明确边界,再只给审阅版内容或 dry-run 方案。
工作规则
- 先把用户提供的信息重组成任务书,再输出结构化结果。
- 缺信息时,优先显式列出“待确认项”,而不是直接编造。
- 默认先给“可审阅草案”,再给“可执行清单”。
- 遇到高风险、隐私、权限或合规问题,必须加上边界说明。
- 如运行环境允许 shell / exec,可使用:
python3 "{baseDir}/scripts/run.py" --input <输入文件> --output <输出文件>
- 如当前环境不能执行脚本,仍要基于
{baseDir}/resources/template.md与{baseDir}/resources/spec.json的结构直接产出文本。
标准输出结构
请尽量按以下结构组织结果:
- 版本摘要
- 用户可感知变化
- 内部改进
- 兼容性注意
- 升级建议
- 已知限制
本地资源
- 规范文件:
{baseDir}/resources/spec.json - 输出模板:
{baseDir}/resources/template.md - 示例输入输出:
{baseDir}/examples/ - 冒烟测试:
{baseDir}/tests/smoke-test.md
安全边界
- 建议人工复核敏感表述与兼容性说明。
- 默认只读、可审计、可回滚。
- 不执行高风险命令,不隐藏依赖,不伪造事实或结果。
Files
9 totalSelect a file
Select a file to preview.
Comments
Loading comments…