ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Django Project Creator

v1.0.0

Automatically create a ready-to-use Django or Django REST Framework project with preconfigured settings and environment provisioning for fast, consistent setup.

0· 636·0 current·0 all-time
byNassi Mohammed@moenassi·duplicate of @moenassi/django-tool
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (Django project creator) align with the included script: it creates Django projects/apps, writes settings/urls/views/serializers, creates models, and installs Django/DRF-related packages. There are no unrelated environment variables, binaries, or external service credentials requested.
Instruction Scope
SKILL.md describes environment provisioning and scaffolding only. The actual script performs file writes, directory changes, pip installs, and runs Django management commands (makemigrations, migrate). Those actions are within the stated scope, but they are invasive filesystem and network actions and are interactive (require user input). The SKILL.md does not explicitly warn about network package installs or migrations — users should expect those side effects.
Install Mechanism
There is no install spec (instruction-only skill). The shipped Python script itself invokes pip at runtime to install packages from PyPI (e.g., django, djangorestframework, drf-nested-routers, django-cors-headers). This is coherent with the purpose but means the skill will cause network activity and modify the local Python environment when run.
Credentials
The skill requests no environment variables or credentials. It operates solely on filesystem paths provided by the user and installs public packages — the level of access requested is proportional to its purpose.
Persistence & Privilege
always is false and the skill does not attempt to modify other skills or system-wide agent settings. Its persistence is limited to creating project files, virtualenvs, installing packages, and running migrations in the user-specified path.
Assessment
This skill appears to do what it claims (scaffold Django/DRF projects) and includes an executable script that will write files, create a virtualenv, install packages from PyPI, and run Django migrations. Before running/installing: (1) review the script (already included) so you understand the exact files it will create and commands it will run; (2) run it in a disposable directory or sandbox; (3) use an isolated virtual environment to avoid contaminating a global Python environment; (4) be aware it will perform network operations (pip installs) — verify the packages and your network/policy constraints; (5) note that the script is interactive and may not behave as expected in non-interactive runs. If you need automated/non-interactive provisioning or stricter supply-chain guarantees, prefer tools with vetted release artifacts or add explicit package version pins and an install spec.

Like a lobster shell, security has layers — review code before you run it.

latestvk97f19sw4e84b6fm4hrtpk36y981f2zs
636downloads
0stars
1versions
Updated 9h ago
v1.0.0
MIT-0
Nassi Mohammed@moenassi
latest
Download

This project eliminates the time wasted on creating virtual machines and setting up environments from scratch. It automatically provisions a ready-to-use development environment with commonly used default requirements, allowing you to choose between Django or Django REST Framework depending on your project needs.

The goal is to standardize and accelerate project initialization by providing a consistent, production-ready structure from day one. Instead of manually configuring dependencies, environments, and base settings, developers can instantly bootstrap a fully configured backend setup with best practices already applied.

  • Key features include:

  • Automated environment provisioning

  • Preconfigured project structure following best practices

  • Support for both Django and Django REST Framework

  • Default development and production-ready settings

  • Dependency management and isolated environments

  • Scalable foundation suitable for small projects or large deployments

This solution is ideal for developers and teams who want to focus on building features rather than repeatedly performing boilerplate setup tasks. It reduces human error, improves consistency across projects, and significantly speeds up the development workflow

Comments

Loading comments...