Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (fortune/career/health analysis) align with the included files: bazi, lunar conversion, ziwei, dayun/liunian analysis, and career/health report generators. All requested resources (none) are consistent with the declared purpose. The code implements the stated algorithms and output formats.
Instruction Scope
SKILL.md describes parsing user birth info and producing either a brief summary or full report. The runtime instructions and code operate on provided birthdate/gender input only; there are no instructions to read arbitrary host files, environment variables, or to contact external endpoints. Data handled (birth date/time) is personal but expected for the skill's purpose.
Install Mechanism
There is no install spec (instruction-only), which is low-risk. However the code imports the sxtwl library (solar/lunar calculations). The registry metadata did not declare dependencies: sxtwl must be available in the runtime environment or the skill will fail. This is an operational note rather than an active security risk.
Credentials
The skill does not request environment variables, credentials, or config paths. All processing is local to the included Python modules. No tokens/keys/secrets are required or referenced.
Persistence & Privilege
Flags: always is false and the skill is user-invocable; it does not request permanent/system-wide privileges or attempt to modify other skills. It runs as a normal, on-demand skill.
Assessment
This skill appears coherent and implements the described fortune‑telling and health/career analyses using local Python code. Before installing, note: (1) it depends on the third‑party sxtwl library (a native Python extension for lunar/干支 calculations); make sure that dependency is available in your runtime or the skill will error. (2) The skill processes personal birth data (date/time/gender) — treat outputs as non‑medical, entertainment/advisory only. (3) There are no network calls, credentials, or unexpected file accesses in the code, so it does not appear to exfiltrate data. If you require extra caution, run the skill in a sandboxed environment or review/execute the code locally to confirm behavior.Like a lobster shell, security has layers — review code before you run it.
latestvk978dsgtnx79c2yhbk2jvkb0g983ms1y
License
MIT-0
Free to use, modify, and redistribute. No attribution required.