Beyond-UI Helper
v1.1.0Install, configure, and troubleshoot the @beyondcorp/beyond-ui React/Tailwind component library. Use when an agent needs to add the package, wire the generat...
⭐ 0· 122·1 current·1 all-time
byMark Kiprotich@machineke
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (Beyond-UI install/config/troubleshoot) match the included materials: example components, theming/docs, and helper scripts to install and wire the library. The resources referenced (Storybook, npm, CSS imports, example TSX snippets) are expected for this purpose.
Instruction Scope
SKILL.md directs running bundled scripts (scripts/install-beyond-ui.sh, add-css-import.js, verify-setup.sh) and npm/storybook commands. That scope is appropriate for installation/configuration, but these scripts will modify the host project (inject import, run installs, run build/tests). SKILL.md correctly advises opening scripts to review parameters before running — you should inspect them prior to execution.
Install Mechanism
This is instruction-only (no explicit install spec). The skill bundles scripts that will perform installs (likely via npm/pnpm/yarn). Bundled scripts are less risky than downloading from an external arbitrary URL, but they still execute commands that install packages and mutate files — review script contents and run in a controlled environment.
Credentials
The skill declares no required environment variables, credentials, or config paths. The SKILL.md mentions checking Trello cards and internal docs for context but does not request Trello credentials or other secrets — the mentions are informational and not an access request.
Persistence & Privilege
Flags show always:false and default model invocation behavior. The skill does not request permanent platform presence or other skills' credentials. Running the bundled scripts may change project files, but that is expected for an installer helper and scoped to the host project.
Assessment
This skill appears coherent and implements what it claims, but treat its bundled scripts as you would any installer: 1) Inspect scripts/install-beyond-ui.sh, scripts/add-css-import.js, and scripts/verify-setup.sh before running to confirm they only run npm/pnpm/yarn, modify expected files, and do not call unexpected external endpoints. 2) Run installs and injection steps in a feature branch or sandboxed environment (container/CI) so changes are reversible. 3) Verify the provenance and integrity of the @beyondcorp/beyond-ui package you will install (check npm registry, version, and changelog). 4) Note example components reference external images (unsplash, i.pravatar.cc) which will cause network requests when rendered. 5) If you need stricter guarantees, request the contents of the three scripts for review or run them step-by-step rather than executing a single automated install.Like a lobster shell, security has layers — review code before you run it.
beyond-uivk971sktgrx93f4gw0gcxrepesn83gxyklatestvk9712ys3yzhhz5tgs0jq3ra5gx83j2sv
License
MIT-0
Free to use, modify, and redistribute. No attribution required.