ClawHub

Mailcheck

v2.0.3

Reference tool for devtools — covers intro, quickstart, patterns and more. Quick lookup for Mailcheck concepts, best practices, and implementation patterns.

0· 132·0 current·0 all-time
bybytesagain4@xueyetianya
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description promise a local reference for Mailcheck guidance. The included SKILL.md and scripts/script.sh only produce plaintext documentation (heredocs) and command-line help; they do not require external services, binaries, or credentials. The requested capabilities match the stated purpose.
Instruction Scope
SKILL.md explicitly states 'No external API calls, no credentials needed, no network access' and the shipped script corroborates this: it only prints static documentation, reads no files, does not read environment variables, and does not make network calls. There is no scope creep.
Install Mechanism
There is no install specification (instruction-only skill with a helper script). Nothing is downloaded or written to disk by an installer. The only file is a small shell script included in the bundle.
Credentials
The skill declares no required environment variables, no credentials, and the runtime script does not access environment secrets. The credential/access footprint is minimal and proportional to a documentation reference tool.
Persistence & Privilege
always is false (default) and the skill does not request persistent system presence or modify agent/system config. It does not access other skills' configs or privileged paths.
Assessment
This skill appears coherent and low-risk: it just prints local documentation and does not ask for credentials or perform network I/O. Minor non-security issues: the script's internal VERSION is 2.0.2 while registry metadata is 2.0.3 (cosmetic), and the help heredoc uses single quotes so $VERSION won't expand (display quirk). If you allow the agent to execute this skill, it's safe in normal contexts, but as with any skill that runs code, consider running it in a sandbox or reviewing the included script before giving it permission to execute on sensitive hosts.

Like a lobster shell, security has layers — review code before you run it.

latestvk9756rtk8w7119p7k20vsb1pss83hm0w

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments