ClawHub

Financial Analyst

v1.0.0

Professional career roadmap platform that generates personalized learning paths and specialization recommendations for aspiring financial analysts.

0· 27·0 current·0 all-time
byToolWeb@krishnakumarmahadevan-cmd
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoCan make purchases
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (career roadmap generator) match the provided SKILL.md and openapi.json which describe endpoints for generating roadmaps, specializations, and learning paths. There are no extra binaries, env vars, or unrelated capabilities requested.
Instruction Scope
SKILL.md is purely documentation and example requests/responses; it does not instruct the agent to read local files or access unexpected resources. Note: the OpenAPI file contains no 'servers' (base URL) and SKILL.md does not specify authentication details, so the API invocation details are incomplete and the agent would need a base endpoint or credentials to actually call a live service.
Install Mechanism
No install spec and no code files — instruction-only skill — so nothing is written to disk or installed.
Credentials
The skill declares no required environment variables, credentials, or config paths. There is no disproportionate request for secrets or unrelated credentials.
Persistence & Privilege
always is false and model invocation is allowed (platform default). The skill does not request permanent presence or attempt to modify other skills or system-wide settings.
Assessment
This is documentation and an OpenAPI spec, not executable code — that reduces risk. Before installing or using it: verify the skill's source (homepage is missing and owner ID is opaque), confirm the API's base URL and authentication method (the openapi.json has no servers field and SKILL.md doesn't show how to get API keys), and avoid submitting sensitive personal or credential data until you know where requests will be sent and whether the service is trusted and paid. If you plan to call the described API from the agent, obtain the official endpoint and any required API key from a trusted provider and ensure calls are limited to the minimum required data.

Like a lobster shell, security has layers — review code before you run it.

latestvk97b8tcwt4yh2ey866wswyayz1849bk7

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments