ClawHub

Mnemonic Generator

v1.0.0

Create memory aids for anatomy and pharmacology

0· 53·0 current·0 all-time
byAIpoch@aipoch-ai
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (medical mnemonics) align with the included Python script: functions create acronyms and story mnemonics for provided items. No unrelated capabilities (cloud, admin, or secret access) are requested.
Instruction Scope
SKILL.md describes parameters and outputs and correctly limits behavior to local generation. However, the SKILL.md Risk Checklist and Risk Assessment mention reading input files and writing output files / file-path validation while the provided script does not perform any filesystem reads/writes beyond simple stdout. This is an inconsistency (documentation is more cautious than the code). The runtime instructions do not instruct the agent to access unexpected env vars, system paths, or external endpoints.
Install Mechanism
No install spec; skill is instruction-only with a small bundled Python script that uses only the standard library. No downloads, package installs, or external repositories are referenced.
Credentials
The skill declares no required environment variables, credentials, or config paths. The code does not read environment variables or request secrets, so requested privileges are proportionate.
Persistence & Privilege
always is false and the skill does not attempt to modify agent configuration or persist credentials. It runs as a local utility and has no privileged persistence behavior.
Assessment
This skill appears to do exactly what it says: local generation of medical mnemonics with no network access or secret usage. Before installing, consider: 1) review the small Python script if you'll run it in a sensitive environment (it prints to stdout only and uses no network or file writes). 2) the SKILL.md mentions file I/O and path validation, but the shipped code does not perform file reads/writes—if maintainers plan to add file input/output later, ensure they validate paths (prevent ../ traversal) and avoid logging sensitive patient data. 3) If you run this in an environment where executing arbitrary Python is restricted, follow your organization’s code review policies. Otherwise it is coherent and low-risk.

Like a lobster shell, security has layers — review code before you run it.

latestvk97eahxzv5xxn5nn70kack66qh83qacy

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments