ClawHub

Reference Style Sync

v1.0.0

One-click synchronization and standardization of reference formats in literature management tools, intelligently fixing metadata errors.

0· 40·0 current·0 all-time
byAIpoch@aipoch-ai
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (reference format synchronization and metadata fixing) align with the included script and supporting reference file. The code imports only local-parsing and stdlib modules and appears designed to read bibliographic files and produce normalized outputs. There are no unexpected credentials, binaries, or cloud services requested.
Instruction Scope
The SKILL.md instructs the agent to run the packaged script against user-provided input files and to confirm inputs, outputs, and scope before execution. The instructions do not ask the agent to read unrelated system files, environment variables, or transmit data externally. The script will read whichever input paths the user supplies and write outputs—this is expected behavior for a file-processing tool.
Install Mechanism
There is no install spec (instruction-only skill) so nothing is downloaded or installed automatically. The repository includes a requirements.txt listing 'dataclasses', which is part of the Python standard library on 3.7+ and thus unnecessary for Python 3.10+—this is a minor inconsistency but not a security risk.
Credentials
The skill declares no required environment variables, no credentials, and no config paths. The code and SKILL.md do not reference secrets or unrelated environment access. Required permissions are limited to reading user-supplied input files and writing outputs.
Persistence & Privilege
Flags indicate the skill is not forced-always and uses the standard invocation model. It does not request permanent presence or modifications to other skills or system-wide agent settings.
Assessment
This skill appears coherent for local bibliographic cleanup: it runs a bundled Python script that reads input files you provide and writes normalized outputs. Before running, (1) review scripts/main.py if you want to confirm there is no network activity or unexpected filesystem access (the visible imports are stdlib-only), (2) run the script on a small sample in a sandbox or test directory, and (3) avoid feeding any sensitive credentials or private data you don't want written to disk. Note: requirements.txt lists 'dataclasses' even though Python 3.10+ includes dataclasses in the stdlib—this is harmless but slightly inconsistent.

Like a lobster shell, security has layers — review code before you run it.

latestvk971m3vw3wm4wespxmpf0tzdjh83y5ze

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments