ClawHub

Inbox Action Board

v1.0.0

把邮件或消息整理成回复、等待、跟进、归档四类行动视图。;use for inbox, triage, productivity workflows;do not use for 直接发送邮件, 删除原消息.

0· 97·0 current·0 all-time
byvx:17605205782@52yuanchangxing
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name, description, SKILL.md, and resources/spec.json all describe an inbox triage tool; the included Python script implements that structured_brief mode but also contains reusable audit helpers (directory/csv/pattern/skill audits). Those extra utilities are reasonable for local auditing but broaden the script's capabilities beyond only 'inbox items'.
Instruction Scope
SKILL.md instructs the agent to run the bundled script or to produce output from templates. The script reads arbitrary files and directories (many text extensions) when given a path, and will write an output file unless run with --dry-run. This is coherent with an audit/triage tool, but it means running the script against an overly-broad path (e.g., / or a home dir) could expose sensitive local contents in the generated report.
Install Mechanism
No install spec; only dependency is python3 (standard). There are no external downloads or package installs.
Credentials
The skill requests no environment variables or credentials and only needs python3. That is proportionate to its stated functionality.
Persistence & Privilege
always is false and the skill does not request persistent system privileges. The script may write an output file (normal) but does not modify other skills or system configs.
Assessment
This skill appears to do what it says: generate a local, structured inbox/triage report. Before running it: (1) review scripts/run.py locally to confirm behavior (it's included and readable), (2) run with --dry-run and test on a small, non-sensitive sample, (3) avoid pointing --input at broad system or home directories to prevent accidental inclusion of secrets, (4) inspect any generated report before sharing, and (5) if you need stronger guarantees, run the script in a sandboxed environment or container. If you need the skill to directly act on external systems (send messages, change configs), do not enable those actions — the skill explicitly disallows them by design.

Like a lobster shell, security has layers — review code before you run it.

latestvk976rse2e1n7q9pxsfd5nbj66n835zem

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📥 Clawdis
OSmacOS · Linux · Windows
Binspython3

Comments