ClawHub

JavaScript

v1.0.2

A comprehensive JavaScript style guide skill. When activated, it provides best-practice JavaScript coding conventions and generates code that strictly follow...

4· 4.1k·1 current·1 all-time
byenoyao@wscats
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill name and description (JavaScript style guide) match the SKILL.md and README content: it provides style rules and generates code following them. It does not request unrelated binaries, credentials, or config paths. Note: the package source/homepage are unknown, but that affects provenance, not functional coherence.
Instruction Scope
The SKILL.md contains only style rules, examples, and guidance for generating JavaScript code — it does not instruct reading files, accessing environment variables, calling external endpoints, or executing user code. Activation is broad ('activates when the user mentions or implies JavaScript'), which may cause the skill to trigger in many JS-related conversations; this is expected for a prompt-based style guide but could lead to more frequent autonomous invocation than some users expect.
Install Mechanism
No install spec and no code files — instruction-only skill. This is the lowest-risk install profile (nothing is written to disk or downloaded).
Credentials
The skill declares no required environment variables, credentials, or config paths and the instructions do not reference any secrets or external service tokens.
Persistence & Privilege
always:false (not force-included) and default model invocation allowed. Autonomous invocation is the platform default; nothing here requests elevated persistence or cross-skill/system configuration changes.
Assessment
This skill appears internally consistent: it only contains a style guide and example code and asks for no credentials or installs. Before enabling: (1) be aware it auto-activates on mentions of JavaScript, so it may run more often than a narrowly-scoped tool; (2) review generated code before running it in your environment (the skill only provides suggestions and does not run code); (3) note that the source/homepage are not provided — if provenance or publisher trust is important to you, consider preferring a skill with documented authorship or a public repository. Otherwise, the skill does not request unnecessary permissions or access.

Like a lobster shell, security has layers — review code before you run it.

latestvk97arxvfj7rh048vwztdrr2jfh8357sx

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments