ClawHub

Profile

v2.0.1

Reference tool for devtools — covers intro, quickstart, patterns and more. Quick lookup for Profile concepts, best practices, and implementation patterns.

0· 116·1 current·1 all-time
by@bytesagain3
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description match the provided files: a doc-style CLI that prints reference text. Minor inconsistencies: SKILL.md/version metadata is 2.0.1 while scripts/script.sh sets VERSION="2.0.0" and the help heredoc is quoted so the $VERSION variable is not expanded. The presence of a script file is consistent with a CLI-style reference, but SKILL.md wording calls this 'instruction-only' (no install spec) — there's no install step, so the script being included is reasonable but worth noting.
Instruction Scope
SKILL.md explicitly states commands output static heredocs with no external calls; scripts/script.sh implements only local text output for the documented commands and does not read files, environment variables, or perform networking. The runtime instructions stay within the declared purpose.
Install Mechanism
There is no install spec and no downloads or package installs. The code is distributed as a small script file; nothing is written to disk by an installer, which is consistent with a low-risk instruction/utility skill.
Credentials
No environment variables, credentials, or config paths are required or referenced. The script does not access secrets or external services — the requested permissions are proportionate to the claimed functionality.
Persistence & Privilege
The skill is not marked always:true and does not request persistent system-wide changes. It does not modify other skills or agent settings; autonomous invocation is allowed (platform default) but not combined with any broad privileges.
Assessment
This skill appears to be a harmless, self-contained CLI that prints documentation. Before installing, you may want to: (1) review the included scripts/script.sh (already done here) and confirm you are comfortable with it, (2) run the script in a sandbox or with a non-privileged account if you plan to execute it, and (3) note the small metadata/version mismatch (2.0.1 vs 2.0.0) which is benign but indicates a minor packaging inconsistency. There are no credential requests or network calls in the code.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dd0mht64pvmrnfahqneng1n83g5h3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments