ClawHub

Repo Growth Operator

v1.0.0

Recommend small, practical growth actions for a public GitHub repository based on releases, skills, docs, and current positioning.

0· 33·0 current·0 all-time
by@guoma970
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name, description, and files (SKILL.md, README, changelog) align: the skill is a planner for public repo growth and does not request unrelated binaries, credentials, or config paths.
Instruction Scope
SKILL.md provides high-level stepwise instructions (review positioning, identify entrypoint, recommend small actions). It does not instruct the agent to read local system files, environment variables, or call external endpoints. The only caveat is the workflow is intentionally generic about how repo context is obtained — consumers should supply only public repo data and avoid giving private analytics or secrets.
Install Mechanism
No install spec or code files are present; this instruction-only skill writes nothing to disk and does not download or install external packages.
Credentials
The skill declares no required environment variables, credentials, or config paths. There are no disproportionate secret or credential requests.
Persistence & Privilege
always is false and there is no mechanism to persist or alter other skills. agents/openai.yaml allows implicit invocation (normal for skills) but this is not combined with broad credentials or install actions.
Assessment
This skill appears coherent and low-risk: it's an instruction-only planner for public GitHub repos and does not request credentials or install code. Before using, ensure any repo context you provide is public (do not feed private analytics, tokens, or other secrets). Review generated outreach or community-reply suggestions before sending them to avoid accidental disclosure. Because the instructions are high-level, verify the agent is given only the intended repository data and not other system/environment information.

Like a lobster shell, security has layers — review code before you run it.

latestvk97egcvck0zaqdzpb006wzxyvh84843b

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments