ClawHub

Family Nutrition Planner

v1.0.0

家庭营养规划师 - 根据家庭成员健康需求、饮食偏好和营养目标, 生成营养均衡的一周菜单、食材采购清单和分餐计划。

0· 89·0 current·0 all-time
byhaidong@harrylabsj
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description, data files (recipes, nutrition DB), type definitions and handler code all align with a meal-planning/nutrition calculator. The included resources and code are proportional to the stated functionality. Minor mismatch: registry version (1.0.0) vs SKILL.md version (0.1.0) and a package.json (Node metadata) alongside Python code—these are packaging inconsistencies but not security issues.
Instruction Scope
SKILL.md instructions stay on-task (calculate BMR/TDEE, generate weekly menus, shopping list, manage allergens). The self-test instructs running a local test script; that script contains a hardcoded absolute path ('/Users/jianghaidong/.openclaw/skills/...') which is a developer artifact and may not exist on other systems. No instructions ask the agent to read unrelated system files, access secrets, or contact external endpoints.
Install Mechanism
No install spec or remote downloads are present. This is an instruction/code-only skill; everything needed is included in the bundle (Python scripts and JSON data). No external packages are pulled during install.
Credentials
The skill does not declare or require any environment variables, credentials, or config paths. The code shown does not import networking libraries or attempt to read environment secrets.
Persistence & Privilege
The skill does not request persistent/always-on presence (always:false). It does not modify other skills or system-wide agent settings in the materials provided.
Assessment
This skill appears internally consistent with its purpose and does not request credentials or perform network calls in the provided files. Before installing or running it: (1) review handler.py to ensure no omitted/truncated code adds network or file-exfiltration behavior (the supplied handler was truncated in the listing), (2) remove or adjust the hardcoded path in scripts/test-handler.py (it references a specific user's home directory), and (3) run the tests in an isolated environment (or inspect the implementation of handle_nutrition_request/handle_nutrition_calculation) to confirm there are no runtime errors or unexpected behavior. The package.json and small version mismatch are packaging oddities — harmless but worth cleaning up. If you need higher assurance, request the complete handler.py file (untruncated) and a brief description of any runtime logging or telemetry the author may have intended.

Like a lobster shell, security has layers — review code before you run it.

latestvk979tw2t437w902teg75pt4sy584ag40

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments