ClawHub

Timeblock

v2.0.0

Plan your day hour-by-hour with intentional time blocking. Use when blocking sessions, checking plans, analyzing allocation, generating agendas.

0· 93·0 current·0 all-time
bybytesagain4@xueyetianya
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the actual behavior. The skill provides a CLI script for creating and querying local timeblock logs and does not request unrelated binaries, credentials, or services.
Instruction Scope
SKILL.md instructs the agent to run the included bash script and stay local; the runtime instructions and script only read/write files in ~/.local/share/timeblock, show stats, search, and export. Minor implementation notes: JSON export does simple concatenation and does not escape values (entries containing quotes/newlines could produce invalid JSON), and search uses grep with the raw term which behaves as a pattern rather than a literal search—these are quality/robustness issues but not evidence of malicious scope creep.
Install Mechanism
No install spec; the skill is instruction-only with one included shell script. Nothing is downloaded or written outside the user's home data directory at runtime.
Credentials
No environment variables, credentials, or config paths are requested. The script only uses HOME to compute a local data directory—appropriate for the stated purpose.
Persistence & Privilege
always is false and the skill does not request elevated/persistent platform privileges or modify other skills. It creates and updates files only under its own data directory.
Assessment
This skill appears to do exactly what it claims: log and manage time-block entries locally under ~/.local/share/timeblock. Before installing, be aware that: (1) it will create and update files in that directory; (2) you should avoid storing sensitive secrets or passwords in log entries since they are plain text; (3) exported JSON may be malformed if entries contain quotes or newlines, and search treats your query as a grep pattern (escape if needed). No network calls or credentials are requested, so the privacy surface is limited to local files.

Like a lobster shell, security has layers — review code before you run it.

latestvk977xpr8jhjx38rqex67htje8s83424s

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments