ClawHub

confluence-publish

v1.0.2

Publish, create, and update Confluence pages from HTML content.

0· 97·0 current·0 all-time
by@aeincx
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name and description match the actual behavior: the skill upserts Confluence pages via the Confluence REST API. Requested credentials (EMAIL, DOMAIN, API_TOKEN), workspace filesystem read, and network access restricted to *.atlassian.net are appropriate and expected.
Instruction Scope
SKILL.md and src/main.py only instruct the agent to read page input (from the provided input string or a workspace file), optional .env-style files under the workspace, and to call Confluence API endpoints on Atlassian Cloud. There are no instructions to read unrelated system files, extra env vars, or to contact external endpoints outside *.atlassian.net.
Install Mechanism
This is an instruction-and-python-source skill with no install spec; requirements.txt only lists requests and pytest. No remote downloads, extract steps, or unusual install behaviors are present.
Credentials
The skill requires exactly EMAIL, DOMAIN, and API_TOKEN (API_TOKEN marked primary), which are the minimal credentials needed to authenticate with Confluence. It does not request unrelated secrets or other service credentials.
Persistence & Privilege
The skill is not always-on, does not modify other skills, and requests only read access to files under the workspace and network access to Atlassian Cloud. Autonomous invocation is allowed (platform default) but is not combined with broad or unrelated privileges.
Assessment
This skill appears coherent and implements safe checks (validates that DOMAIN targets *.atlassian.net, enforces workspace-only file reads). Before installing: provide only a Confluence API token with the minimum required privileges, ensure any env_file or page_path you pass is inside your workspace (the skill rejects outside files), and review the included src/main.py if you want to confirm no additional network endpoints are added. Consider testing in an isolated environment or with a test Confluence space/account first.

Like a lobster shell, security has layers — review code before you run it.

latestvk978y0scdh8x55qmz3s522vzss83bnzv

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments