ClawHub

Skill Publish Guide

v1.0.0

Guide for publishing and managing skills on ClawHub. Use when the user wants to publish, update, delete, or manage skills on ClawHub. 当用户需要发布、更新、删除或管理 ClawHu...

0· 65·0 current·0 all-time
by路多辛@luduoxin
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill is an instruction-only publisher guide for ClawHub and only references the clawhub CLI, GitHub account age, and SKILL.md formatting requirements — all appropriate and expected for a publish/manage guide.
Instruction Scope
SKILL.md gives step-by-step authoring, validation, publishing, updating, and deletion commands using the clawhub CLI and describes frontmatter requirements; it does not instruct reading unrelated system files or accessing unrelated credentials. It explicitly warns about risky patterns (e.g., curl|bash).
Install Mechanism
No install spec or code files are present. This is lowest-risk (instruction-only) and nothing is being downloaded or written by the skill itself.
Credentials
The guide declares only optional CLAWHUB_SITE and CLAWHUB_REGISTRY overrides and instructs authors to declare any service-specific env vars in a skill's frontmatter. It does not request secrets or unrelated credentials.
Persistence & Privilege
always:false and no install or config changes are requested. Autonomous model invocation is allowed by platform default but the skill itself does not request permanent presence or elevated privileges.
Scan Findings in Context
[no_code_files_to_scan] expected: The static scanner found no code files to analyze — expected because this is an instruction-only SKILL.md. Absence of findings is not evidence of safety, but here it aligns with the skill being documentation.
Assessment
This is a text-only publishing guide that appears consistent with its purpose. Before using it: ensure you have the official clawhub CLI installed from a trusted source, avoid pasting secrets into SKILL.md (declare secrets only in frontmatter as required), be cautious of any referenced install scripts that use curl | bash, and confirm the CLI login step uses the scopes you expect. Because this is documentation-only, it does not add code or request credentials itself.

Like a lobster shell, security has layers — review code before you run it.

latestvk976pv52rmrgmdbrkcdwzb1zk584ncb3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments