ClawHub

Encoding Toolkit

v1.0.0

Multi-format encoder, decoder, and hasher supporting Base64, Base64URL, Base32, Hex, URL-encoding, HTML entities, ROT13, Binary, and ASCII85. Also computes M...

0· 205·0 current·0 all-time
byJohn Wang@johnnywang2001
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name and description match the included script and SKILL.md examples. The tool performs only encoding, decoding, detection, and hashing using Python stdlib; nothing requested (no env vars, no binaries) is out of scope.
Instruction Scope
SKILL.md directs running the included Python script, reading from stdin or a specified file, listing formats, and computing hashes. The instructions do not ask the agent to read unrelated system files, call external endpoints, or access other credentials.
Install Mechanism
No install spec is provided (instruction-only with a bundled script). The code is pure Python using only stdlib modules; there are no downloads or build steps that would write or execute remote code.
Credentials
The skill declares no environment variables, no credentials, and no config paths. The code does read files when told to (--file) and stdin, which is expected for this tool.
Persistence & Privilege
always is false and the skill does not request persistent system privileges or modify other skills. Autonomous invocation is allowed by platform default but not combined with other risky behaviors here.
Assessment
This skill appears to be a straightforward, offline Python encoding/decoding and hashing utility. It uses only the Python standard library, does not contact the network, and requires no credentials. Before installing, consider: (1) the script will read any file path you supply, so avoid passing sensitive files unless you intend their contents to be output or processed; (2) decoded output may contain binary data — handle output carefully in contexts where leaking decoded secrets is a concern; and (3) if you need the functionality integrated into an automated agent, remember the agent could feed sensitive strings to the skill (it will print results to stdout), so ensure agent policies control what gets sent to skills. Other than those usage cautions, there are no incoherent or disproportionate requests in this skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk973q1g4bdhhvfeck8s86q6e6d82wevz

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments