ClawHub

contract-redline-navigator

v1.0.0

Compare draft agreements, highlight risky clause changes, and generate a negotiation checklist with plain-language explanations.

0· 202·0 current·0 all-time
byvx:17605205782@52yuanchangxing
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (contract comparison, risk highlighting, checklist) match the included files: a local diff script and a risk-clause resource. Declared runtime (python3) is proportionate.
Instruction Scope
SKILL.md instructs the agent to accept old/new drafts and produce diffs/checklists; the bundled script reads only files the user provides and writes a local output. Note: the skill will cause contract text to be processed by the agent/model—this may expose sensitive contract contents to whichever model provider/environment is used; SKILL.md does not instruct any remote transmission itself.
Install Mechanism
No install spec; this is instruction-only with a small auditable local script. No remote downloads, package installs, or extraction steps are present.
Credentials
No environment variables, credentials, or config paths are requested. The resource and script operate on user-supplied files only.
Persistence & Privilege
always is false and the skill does not request persistent system privileges. The included script writes a user-visible output file (default contract_diff.md) in the working directory—no modification of other skills or system configs is indicated.
Assessment
This skill appears coherent and local, but consider these practical precautions before use: (1) Inspect scripts yourself (scripts/clause_diff.py is tiny and auditable) and run smoke test (python3 scripts/clause_diff.py --help). (2) Be mindful that contract text is sensitive—avoid sending full confidential contracts to remote model providers unless your environment/policy allows it; redact or run in an isolated/local model if needed. (3) Confirm the agent platform's data handling (where prompts and outputs are sent/stored). (4) Note the skill's source/homepage is unknown—if supply-chain provenance matters, only install after additional vetting or obtain the skill from a trusted source. (5) The script writes an output file in the current workspace—ensure filesystem permissions/paths are appropriate.

Like a lobster shell, security has layers — review code before you run it.

latestvk976crbtdhpqfxkz27gmxbgn1s82ryxrskillvk976crbtdhpqfxkz27gmxbgn1s82ryxr

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🧰 Clawdis
Binspython3

Comments