ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Daily Report Joig

v1.0.0

生成简洁的中文日报(highlights/blockers/next),并可落盘为 Markdown 文件,适合个人复盘与同步。

0· 338·0 current·0 all-time
by@joifg
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (generate short Chinese daily reports and optionally write to Markdown) aligns with the SKILL.md: it only normalizes a date, formats Markdown, and writes a file. No unrelated env vars, binaries, or installs are requested.
Instruction Scope
Instructions are narrowly scoped to normalizing the date, composing Markdown, and writing to outputPath (creating parent directory if missing). This is appropriate for the stated purpose, but writing to a user-specified filesystem path is the main operational effect to be aware of (ensure outputPath is safe and not e.g. a sensitive system path).
Install Mechanism
No install spec and no code files — instruction-only skills present lower disk/execution risk.
Credentials
No environment variables, secrets, or external credentials are requested; requested capabilities are proportionate to generating and saving a report.
Persistence & Privilege
always is false and the skill does not request persistent/system-wide privileges or modify other skills; autonomous invocation is allowed (platform default) but not otherwise privileged.
Assessment
This skill is narrowly focused and internally consistent. Before using it: (1) test with a safe outputPath (e.g., a dedicated reports directory) to confirm where files are written; (2) avoid passing sensitive paths (system dirs, other users' data) or filenames that could cause path traversal; (3) run with an agent account that has limited filesystem permissions so the skill can only write to permitted locations; (4) if you plan to automate it, review produced Markdown content before sharing. No credentials or installs are required, so risks are limited to file writes.

Like a lobster shell, security has layers — review code before you run it.

latestvk979n5w17451zd1v99bfvret29825hxk

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🗒️ Clawdis

Comments