ClawHub

Inventory Manager

v5.0.0

Inventory management reference — SKU systems, FIFO/LIFO valuation, barcode formats, ABC analysis, EOQ formula, and WMS migration

0· 737·1 current·1 all-time
byBytesAgain2@ckchzh
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description match the provided SKILL.md and scripts: static reference material about SKU systems, valuation, barcodes, ABC/EOQ, and migration. It does not request unrelated credentials, binaries, or config paths.
Instruction Scope
SKILL.md explicitly states no external API calls or credentials and the commands produce plain-text heredoc reference output. The shipped script (scripts/script.sh) only emits static documentation via heredocs; it does not read arbitrary files, access env vars, or contact external endpoints.
Install Mechanism
There is no install spec (instruction-only). The included shell script is static content and not an installation payload — no downloads, package installs, or archive extraction are performed.
Credentials
The skill declares no required environment variables or primary credential. Neither SKILL.md nor scripts reference secrets or require configuration, so requested access is proportionate to the stated purpose.
Persistence & Privilege
always is false (normal). The skill is user-invocable and model-invocation is permitted (platform default). This is expected for a reference skill, but as with any skill that can be invoked autonomously you should be comfortable with the agent executing its logic — here that logic is harmless static output.
Assessment
This skill appears to only provide offline reference text and does not request credentials, make network calls, or perform installs. Before installing: (1) Confirm your agent runtime will not execute arbitrary code from skills without your approval — the included script is benign but is executable shell code. (2) If you want absolute assurance, open and review scripts/script.sh yourself (it's only heredoc output). (3) If you run the skill in an environment with strict policies, prefer skills that are instruction-only with no executable files. Otherwise this skill is coherent and low-risk for typical use.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dfe8e53bnhrtgm0r5dmfyh183e53fproductivityvk9734h1eg439x23p2vngb8e51s82s991

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments