ClawHub

nobodybuilt

v1.1.0

Use this skill when the user wants to find unexplored tool, app, or project ideas that nobody has built yet. Triggers: 'nobodybuilt', 'find me an idea', 'wha...

0· 91·0 current·0 all-time
byKe Wang@kewang0622
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name and description promise ideation + web validation + code generation. The skill is instruction-only (SKILL.md) and asks the agent to search GitHub, Reddit, Product Hunt, npm, etc., which is consistent with the stated goal of validating 'blue ocean' ideas.
Instruction Scope
SKILL.md instructs the agent to use web searches and analyze optional user images/screenshots, then produce runnable code, README, and launch copy. These actions stay within the skill's advertised scope; the instructions do require outbound web/search access and significant autonomous content/code generation but they do not ask the agent to read unrelated local files, pull secrets, or contact unknown endpoints.
Install Mechanism
There is no platform install spec embedded in the skill bundle; an included install.sh clones the public GitHub repo and copies SKILL.md into ~/.claude/skills. Cloning a public GitHub repo is expected and low risk, but it does write a skill file into the user's home directory when run.
Credentials
The skill declares no required environment variables, no credentials, and no config paths. This is proportionate for a discovery/ideation skill that relies on public web searches and agent capabilities.
Persistence & Privilege
The skill is not 'always: true' and does not request elevated platform privileges. The installer only places a SKILL.md in the user's skills directory (if you run install.sh). It does not modify other skills or system-wide settings.
Assessment
This skill appears coherent and low-risk, but consider the following before installing or running: 1) install.sh clones a public GitHub repo and copies SKILL.md into ~/.claude/skills — if you prefer, open SKILL.md and paste it into your agent manually instead of running the script; 2) the agent will perform public web searches (GitHub, Reddit, Product Hunt, npm) and generate runnable code — always review generated code for licensing, security, and safety before running or publishing it; 3) publishing artifacts (GitHub releases, marketplaces) will require your own credentials if you choose to publish — the skill does not request them but you should avoid handing any tokens to the agent blindly; 4) if you want the agent to actually run build/deploy steps on your machine or push to repos, be cautious and only grant the minimum necessary credentials for that specific action.

Like a lobster shell, security has layers — review code before you run it.

latestvk97djqqmqryhypbs8cag8j8ekd83nnrh

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments