ClawHub

Sendme

v0.1.4

Send and receive files peer-to-peer using the sendme protocol from iroh.computer. Use when the user wants to share files, transfer files between machines, se...

2· 506·0 current·0 all-time
byArnon K.@muninn-huginn
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (peer-to-peer file transfer via sendme) match the declared requirement (the sendme binary) and the install hint (brew formula). There are no unrelated credentials, binaries, or config paths requested.
Instruction Scope
SKILL.md only instructs installing and invoking the sendme CLI and includes a PTY-based pattern for headless environments. It does not request reading unrelated files, other env vars, or transmitting data to unexpected endpoints. It correctly warns the sender must stay online and that relays may be used as a fallback (an expected implementation detail).
Install Mechanism
Install spec points to a Homebrew formula named 'sendme' which is a reasonable, low-risk install mechanism. The manifest also mentions cargo install as an alternative. As with any third-party binary, users should verify the formula/source/repository and trustworthiness of the package before installing.
Credentials
No environment variables or credentials are requested. The lack of secrets is proportional to a CLI wrapper/usage guide for a peer-to-peer file transfer tool.
Persistence & Privilege
Skill does not request always:true and is not force-included. It makes no persistent changes or requests elevated privileges; autonomous invocation is allowed by default but is normal for skills and not combined with other red flags here.
Assessment
This skill is an instruction-only wrapper for the sendme CLI and appears internally consistent. Before installing or using it: (1) verify the Homebrew 'sendme' formula or the upstream repository to ensure you trust the publisher; (2) be careful what files you share—sendme transfers data directly and a ticket grants access; do not publish tickets publicly; (3) understand sendme may fall back to relay servers (check the relay operator if you need to avoid third-party relays); (4) for headless/automated use, the provided PTY pattern is reasonable but review and run it in a safe environment; and (5) treat installation of any third-party binary like installing software from the internet—check signatures, repository history, and community trust before proceeding.

Like a lobster shell, security has layers — review code before you run it.

latestvk9758y7v7rkde7msqhf5sjg5sh81m73t

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Any binsendme

Install

Homebrew
Bins: sendme
brew install sendme

Comments