ClawHub

Shadows MCP Forge

v1.1.0

MCP (Model Context Protocol) server builder — guides creation of high-quality MCP servers in Python (FastMCP) or TypeScript (MCP SDK). Use when building inte...

0· 220·0 current·0 all-time
by@nakedoshadow
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name and description (MCP server builder) match the declared runtime needs: it may use Python or Node tooling and detects available binaries (python, node, uv). The declared anyBins list is proportional to the claimed capability.
Instruction Scope
SKILL.md contains templates, scaffolding guidance, and explicit statements about installing packages and reading the user's project structure to choose stack preference. Reading a project tree to scaffold is coherent with its purpose; it also states it will not execute generated code during scaffolding.
Install Mechanism
This is instruction-only with no install spec and no downloads—lowest risk. It only suggests using package managers (pip/npm) when the user asks to install dependencies, which is expected for code scaffolding.
Credentials
The skill does not request environment variables, credentials, or config paths. The doc recommends using env vars for secrets but does not demand any specific secrets—this is appropriate for a scaffolding helper.
Persistence & Privilege
always is false and model invocation is allowed (platform default). The skill does not request persistent system-wide changes or access to other skills' configs.
Assessment
This skill is coherent for scaffolding MCP servers, but be cautious before running any suggested pip/npm commands or running generated code: review generated files first, run dependency installs in a controlled environment (virtualenv/container), verify package names before installing, and never paste secrets into generated scaffolding. If you want to be extra safe, have the skill only output the code for manual review rather than letting it run any install commands automatically.

Like a lobster shell, security has layers — review code before you run it.

latestvk974qr6vez5z0e6zxxy9my5rtx82fene

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔌 Clawdis
OSmacOS · Linux · Windows
Any binnode, python, python3, uv

Comments