ClawHub

Move

v1.0.0

Move reference tool. Use when working with move in blockchain contexts.

0· 85·0 current·0 all-time
by@bytesagain3
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name and description claim a Move reference tool and the included SKILL.md plus scripts/script.sh provide only command-to-documentation mappings and reference text. The requested artifacts (none) and the script's behavior align with a read-only reference tool.
Instruction Scope
SKILL.md instructs the agent to run scripts/script.sh with a small set of subcommands. The script only emits static text (via here-docs) and does not read arbitrary files, environment variables, or reach out to the network. There is minor scope drift in wording (help output says 'move <command>' while SKILL.md uses 'scripts/script.sh <command>'), but this is a usability bug, not a security concern.
Install Mechanism
There is no install specification and no external downloads; the skill is instruction-plus-a-local-script only. Nothing is written to disk at install time by the registry spec, and the bundled script is plain text without obfuscated code or extraction steps.
Credentials
The skill declares no required environment variables, credentials, or config paths, and the runtime script does not access environment variables or secret-named values. No disproportionate access to credentials is requested.
Persistence & Privilege
The skill is not marked always:true and does not attempt to modify agent/system configuration. It only exposes synchronous, user-invocable commands that print documentation; there is no evidence of persistent privileges or background behavior.
Assessment
This skill is a small, local reference that prints static documentation from scripts/script.sh. It does not require credentials, network access, or installs — review the included script (scripts/script.sh) yourself if you want to confirm behavior before running. Note minor usability issues (help text quoting prevents VERSION expansion and SKILL.md and help wording differ), but there are no security red flags. If you plan to run it in an automated agent, ensure the agent will only invoke the documented subcommands and not run arbitrary additional arguments.

Like a lobster shell, security has layers — review code before you run it.

latestvk97e0pe5r1ewsgy0tm8cseswax83dnwf

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments