ClawHub

PythonGO

v1.0.0

answer questions about pythongo code, docs, callbacks, errors, modules, functions, marketcenter, paramsmap, instrument_id, exchange, kline data, and strategy...

0· 64·0 current·0 all-time
byPythonGO@aruelius
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description ask the skill to answer questions about pythongo code/docs; the package actually contains a pythongo codebase, indexed docs, examples, and reference pyi files that the SKILL.md tells the agent to use. Nothing requested or included (no external credentials, no unrelated binaries) appears disproportionate to that purpose.
Instruction Scope
SKILL.md tightly constrains runtime behavior: search local ./codebase, ./docs_indexed, ./docs_normalized and reference files in a defined priority, prefer bundled docs, and do not invent facts or use external sources. It does not instruct the agent to read unrelated system files, exfiltrate secrets, call unexpected endpoints, or access credentials.
Install Mechanism
No install spec is present (instruction-only), so nothing will be downloaded or installed by a provided installer. The skill bundle includes many code and doc files but no automated install actions.
Credentials
The skill does not request environment variables, binaries, or credentials — which is appropriate. Note: the bundled docs reference optional dependency installation (e.g., pip install debugpy) and vendor download links for client installers; these are documentation references and not required by the skill itself, but you should be cautious before running any installers or enabling remote debug in your environment.
Persistence & Privilege
The skill is not marked always:true and does not require persistent system-wide privileges or modify other skills. Autonomous invocation is allowed by default (platform normal) but that is not combined with any broad credential access here.
Assessment
This skill appears coherent and matches its stated purpose: it simply bundles the pythongo source and docs and instructs the agent to answer questions from those local resources. Before installing/using: (1) review the bundled code if you will run it or import it into a live trading environment; (2) do not enable or run remote debugging (the docs mention start_remote_debug and installing debugpy) on production systems unless you trust the environment and understand the implications; (3) avoid running any external installers or binaries linked in the docs unless you trust the vendor and verify the download; (4) the skill does not request credentials or system access, but treat any code pulled from third parties with standard caution for code that could interact with trading systems.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fhqj9avj8tsqsv9a7t8hk2x83nkqv

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments