ClawHub

Hfmirror Trending En

v1.0.0

Fetches real-time Hugging Face trending data via the public HF-Mirror API and generates structured Markdown reports in English. Suitable for conversational A...

0· 42·0 current·0 all-time
byshunshiwei@ddongcui
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the implementation. The included script fetches https://hf-mirror.com/api/trending and formats results into Markdown, which is exactly what the skill claims to do. No unrelated services, binaries, or credentials are requested.
Instruction Scope
SKILL.md directs the agent to run scripts/summarize.py --fetch and to present the generated Markdown. The script only fetches the declared public API, parses JSON, and writes a report. It does not read arbitrary files, environment variables, or network endpoints beyond the stated API.
Install Mechanism
There is no install spec (instruction-only plus a small Python script). The script uses only Python standard libraries and does not pull external packages or download code at install time.
Credentials
The skill declares no required environment variables, credentials, or config paths and the code does not access any secrets or unrelated env vars. Outbound network access is limited to the single public API URL.
Persistence & Privilege
always is false and the skill does not modify other skills or system config. It writes a single output Markdown file when invoked, which is consistent with its purpose.
Assessment
This skill appears coherent and low-risk: it makes a single outbound request to the public HF‑Mirror trending API and generates a Markdown file. Before installing, consider whether your environment permits outbound HTTPS requests to hf-mirror.com and whether writing a report file (default trending_summary.md) is acceptable in your agent's working directory. Also note the skill's source/homepage is not provided—if provenance matters to you, consider vetting the author or running the script in a sandboxed environment first.

Like a lobster shell, security has layers — review code before you run it.

latestvk977ttam3tcff824adrf494g3x845kfz

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments