ClawHub

Trademark Helper

v4.0.1

Reference tool for business — covers intro, quickstart, patterns and more. Quick lookup for Trademark Helper concepts, best practices, and implementation pat...

0· 377·1 current·1 all-time
byBytesAgain2@ckchzh
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (reference/training docs for 'Trademark Helper') aligns with the included script and SKILL.md: both produce plain-text reference output. There are no unexplained env vars, binaries, or config paths requested.
Instruction Scope
SKILL.md explicitly states commands output heredocs with no external API calls or network access, and the included scripts only emit static documentation. Minor content inconsistencies (e.g., quickstart text mentioning 'access credentials' and 'required tools') are just documentation wording and do not translate into runtime actions. Also a small implementation bug: the script embeds $VERSION inside a single-quoted heredoc in show_help so it will print the literal "$VERSION" rather than the numeric version.
Install Mechanism
There is no install spec and no downloads; the skill is instruction-only with one bundled shell script. Nothing is written to disk beyond the script already present in the package.
Credentials
The skill declares no required environment variables, no credentials, and the script does not read environment secrets or config paths. No disproportionate credential access is requested.
Persistence & Privilege
The skill is not set to always:true and does not request system-wide changes. It may be invoked autonomously by the agent (default behavior) but its actions are limited to emitting local documentation text.
Assessment
This skill appears coherent and low-risk: it only prints static reference text and requests no credentials or network access. Things to consider before installing: (1) the package contains a small bug/inconsistency (version string handling and a version mismatch between SKILL.md and the script) but nothing malicious; (2) if you plan to allow autonomous skills, note that this one will be able to run when invoked by the agent — that is low risk here because it only outputs docs; (3) if you want extra assurance, inspect/run scripts in a sandbox or review the repository at the provided source URL before enabling. If you see any unexpected code changes in future versions (network calls, env access, downloads), treat that as a red flag and re-evaluate.

Like a lobster shell, security has layers — review code before you run it.

latestvk979qmpqc3m61z7p5jtrd770ad83h17mproductivityvk978aqyhsgknz3crwmvhtatgq582szen

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments