ClawHub

Nex Ghostwriter

v1.0.0

Meeting follow-up email drafter. Dump your meeting notes and get a polished follow-up email in seconds. Log the meeting (who attended, what was discussed, ac...

0· 53·0 current·0 all-time
byNex AI@nexaiguy
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (meeting follow-up email drafter) matches the code and CLI: local SQLite storage, templates, contact management, search, exports. Required binary (python3) is appropriate and proportional.
Instruction Scope
SKILL.md instructs running the included setup.sh and using the nex-ghostwriter CLI. The runtime instructions and code operate only on the user's data directory (~/.nex-ghostwriter) and do not read unrelated system files, environment secrets, or transmit data externally.
Install Mechanism
There is no formal install spec in the registry, but the bundle includes setup.sh which creates ~/.nex-ghostwriter, initializes the SQLite DB and writes a CLI wrapper to ~/.local/bin. The install is local and does not download external code. Note: the presence of code files + setup.sh while registry metadata lists 'No install spec / instruction-only' is a small metadata inconsistency to be aware of.
Credentials
The skill requests no environment variables or credentials. The code accepts an optional NEX_GHOSTWRITER_DIR env var to override data dir (reasonable). No tokens, API keys, or unrelated env access are requested.
Persistence & Privilege
always is false and the skill only creates user-level files (~/ .nex-ghostwriter and ~/.local/bin wrapper). It does not modify other skills or system-wide configuration beyond the user's home directory.
Assessment
This package appears to do what it claims: a local CLI that stores meeting notes and generates emails. Before installing: (1) Confirm you trust the author/source (setup.sh will create ~/.nex-ghostwriter and a wrapper in ~/.local/bin). (2) If you want extra safety, run setup.sh in a controlled environment (e.g., VM or container) or inspect/execute the Python files interactively — there are no network calls or telemetry in the code provided. (3) Note the licensing: README/LICENSE reference AGPL on upstream and MIT-0 for copies installed through ClawHub; if you plan to incorporate into a proprietary product or host it as a service, check the license terms. (4) The registry metadata omits an install spec despite setup.sh being present — this is a minor inconsistency but not a security problem. If you need higher assurance, request the upstream repository URL and compare the published package to the upstream source.

Like a lobster shell, security has layers — review code before you run it.

latestvk972dp6wfamft8cmh30gb5njp584awpm

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

✉️ Clawdis
Binspython3

Comments