ClawHub

Hacker news on topic AI and agent only

v1.0.1

Fetch and display Hacker News stories about AI, agents, and Claude. Default is past week. Use when the user asks for HN news, Hacker News AI stories, latest...

0· 52·0 current·0 all-time
byJay@goog
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description promise (HN stories about AI/agents/Claude) matches the implementation: a Python script that queries the HN Algolia search API for stories containing the specified keywords.
Instruction Scope
SKILL.md instructs running the included script and reformatting output. The script only performs an HTTPS GET to hn.algolia.com and prints results; it does not read local files, environment variables, or send data to other endpoints.
Install Mechanism
There is no install spec (lowest risk). However, the included Python script depends on the third-party 'requests' library but the skill does not declare or install that dependency — operational mismatch (not a security red flag but a runtime/packaging issue).
Credentials
The skill requires no environment variables, credentials, or config paths. Nothing requested appears disproportionate to fetching HN stories.
Persistence & Privilege
Skill is not always-enabled and does not request persistent privileges or modify other skills/config; autonomous invocation is allowed but is the platform default and not combined with other red flags.
Assessment
This skill is coherent with its description: it fetches HN stories via the Algolia API and reformats them. Before installing, note two practical points: (1) the script requires Python and the 'requests' package — the skill provides no install steps, so ensure your environment has that dependency; (2) the skill will make outbound network requests to https://hn.algolia.com — if you have network restrictions or logging requirements, confirm this is acceptable. As with any third-party code, only install if you trust the source; the included script is short and readable, but running code from unknown publishers always carries operational risk.

Like a lobster shell, security has layers — review code before you run it.

latestvk974syn0h6b38dz5e94zebnbs98408nx

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments