Luma Events
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: luma Version: 1.0.0 The skill is designed to fetch event data from lu.ma using a Python script that scrapes public HTML. The `SKILL.md` instructs the AI agent to execute this script and to save the fetched event data to `~/clawd/memory/luma-events.json` for internal agent memory and context. The Python script `scripts/fetch_events.py` uses only standard library modules, makes network requests solely to lu.ma, and does not exhibit any signs of data exfiltration, malicious execution, persistence, or obfuscation. All actions are aligned with the stated purpose of providing Luma event information to the agent.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
You have less external context for who maintains the skill or where updates originate.
The registry entry provides limited external provenance for the skill, although the supplied files do not show remote installers, hidden dependencies, or obfuscated code.
Source: unknown Homepage: none
Review the included files before installation and re-review future updates, especially because the source and homepage are not provided.
Your queried cities or event interests may remain in a local memory file and influence later answers.
The skill intentionally creates persistent local memory from fetched event data. The path and retention are disclosed, but persisted event data can reflect cities or events the user asked about and may be reused later.
Always save fetched events to `~/clawd/memory/luma-events.json` for future reference. ... Keep events for next 60 days only
Use the skill only if this local retention is acceptable; inspect or delete ~/clawd/memory/luma-events.json if you do not want those event records kept.