Social Selling Touch Planner
v1.0.0Plan and execute a multi-touch social selling strategy that builds familiarity across LinkedIn, Twitter, and other social channels — layered on top of phone...
⭐ 0· 22·0 current·0 all-time
byHung Quoc To@quochungto
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Benign
high confidencePurpose & Capability
Name/description align with the instructions: the skill builds social-selling cadences, templates, and schedules from a prospect list and user channel info. It does not request unrelated secrets, binaries, or installs.
Instruction Scope
SKILL.md tells the agent to read prospect/account files from the working directory, ask the user for missing inputs, build tables/cadences/templates, and write outputs. It may optionally fetch public profile pages (WebFetch) which is consistent with building social touch plans. The instructions do not ask the agent to access unrelated system files or credentials.
Install Mechanism
No install spec and no code files — instruction-only. This is the lowest-risk pattern and is proportional to the skill's purpose.
Credentials
The skill declares no env vars or credentials, which is appropriate. It does require read/write access to the agent's working/document directory (to find prospect-list.csv, etc.). This is expected but means the agent will have access to any files present there, so users should ensure the working directory only contains intended input files.
Persistence & Privilege
always is false and model invocation is allowed (default). The skill does not request permanent presence or escalate privileges; its scope is limited to reading/writing documents and optional web fetches.
Scan Findings in Context
[no-findings] expected: The static scanner found nothing to analyze because this is an instruction-only skill with no code files. That absence is expected and not evidence of risk.
Assessment
This skill appears coherent with its stated purpose. Before installing: (1) confirm the working directory contains only the prospect/account files you intend the agent to read (remove unrelated sensitive files), (2) do not provide platform login credentials — the skill doesn't request them; if you want it to post or act on your behalf, plan how to supply credentials securely outside the skill, (3) review any generated messages/templates before sending or posting, and (4) if you are concerned about autonomous actions, consider restricting autonomous invocation or monitoring the agent's actions when first using the skill.Like a lobster shell, security has layers — review code before you run it.
bookforgevk9785hwcg4x8kr8mzb471nnxah851brflatestvk9785hwcg4x8kr8mzb471nnxah851brftags:vk9785hwcg4x8kr8mzb471nnxah851brf
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📚 Clawdis