ClawHub

DeepWiki MCP

v1.0.0

Query DeepWiki MCP to get AI-grounded answers about any public GitHub repository. Use when answering questions about a repo's source code, architecture, conf...

0· 357·1 current·1 all-time
byChunhua Liao@chunhualiao
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description, triggers, included helper script, and README all align: the skill queries DeepWiki's MCP for public GitHub repos. Required tools (exec, bash, curl, python3) match what the helper script uses. No extraneous permissions or credentials are requested.
Instruction Scope
SKILL.md instructs the agent to run the included scripts/deepwiki.sh or a direct curl POST to the documented MCP endpoint. The instructions do not ask the agent to read arbitrary local files, environment secrets, or modify system state beyond executing the helper script and standard commands. Default repo is openclaw/openclaw if omitted.
Install Mechanism
No install spec — instruction-only skill with a single small helper script included. Nothing is downloaded from arbitrary URLs or written to disk by an installer. This is low risk for install-time behavior.
Credentials
The skill requests no environment variables, no credentials, and no config paths. All external access is a single documented HTTPS endpoint (mcp.deepwiki.com) and the payloads are repo names and user questions, which are coherent with the stated function.
Persistence & Privilege
always:false (default), user-invocable:true, and no modifications to other skills or system config. The skill requires exec to run its helper script, which is expected for this functionality; autonomous invocation is allowed but not excessive given the skill's scope.
Assessment
This skill appears coherent and low-risk: it runs a bundled script that POSTs your question and the public repo name to https://mcp.deepwiki.com/mcp and returns the service's AI-grounded answer. Before installing, consider: (1) network privacy — queries (repo name and question) are sent to a third-party endpoint you should trust; (2) no private-repo support — do not use this for proprietary code (the skill disclaims this); (3) runtime dependencies — it executes bash/curl/python3 via exec, so ensure your environment allows that; (4) verify the endpoint/domain if you require provenance (mcp.deepwiki.com is the only external host); and (5) rate limits or data retention policies of DeepWiki if you plan many automated queries. If those points are acceptable, the skill is consistent with its stated purpose.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dt1h25ey0hvwsbg1n1mcrt9821fmp

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments