ClawHub

Bytesagain Privacy Policy

v1.0.0

Generate GDPR/CCPA-compliant privacy policies. Use when scanning data practices, auditing consent flows, checking compliance, drafting policy documents.

0· 30·0 current·0 all-time
by@loutai0307-prog
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The primary script (scripts/privacy.sh) generates GDPR/CCPA privacy policies as advertised. A second script (scripts/script.sh) is a local 'security scanning and hardening' utility that is related to compliance but is not strictly necessary for generating privacy policies — its presence is unexpected but not overtly malicious.
Instruction Scope
SKILL.md provides command names and examples that mostly match privacy.sh, but examples mention 'privacy-policy run' which neither script implements exactly. The scripts do not read secrets or call external endpoints, but they do create and write to a local data directory (defaults to $XDG_DATA_HOME or $HOME/.local/share/privacy-policy).
Install Mechanism
No install spec or remote downloads; this is an instruction-only skill with included scripts. Nothing in the package pulls code from external URLs or uses an installer that would write arbitrary binaries.
Credentials
The skill declares no required environment variables or credentials. The scripts optionally honor PRIVACY_POLICY_DIR and XDG_DATA_HOME and use HOME; no sensitive environment variables are requested.
Persistence & Privilege
always is false and the skill does not request elevated privileges. It does create a persistent data directory and log files (~/.../.local/share/privacy-policy by default), so installing will leave local artifacts unless redirected via PRIVACY_POLICY_DIR.
Assessment
This skill appears to do what it says: generate privacy policies. Before installing, review the two included scripts. Note that the package will create a local data directory and history.log by default (~/.local/share/privacy-policy) — set PRIVACY_POLICY_DIR if you want a different location or sandbox it. The second script (scripts/script.sh) is a security/hardening tool that is optional for policy generation; remove or inspect it if you don't want that functionality. No network calls or credential requests were found, but generated policy text is for reference only (the script itself contains a legal-disclaimer) — have any final policy reviewed by a qualified lawyer.

Like a lobster shell, security has layers — review code before you run it.

latestvk973h08qg9j4v1zx4d99pfq61x846hfd

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments