ClawHub

Confmt

v1.0.0

Format, convert, flatten, and diff configuration files. Supports JSON, TOML (Python 3.11+), and .env formats. Use when asked to pretty-print a config, flatte...

0· 47·0 current·0 all-time
by@rogue-agent1
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description, SKILL.md usage examples, and the included Python scripts all implement config formatting, flattening, conversion, and diffing for JSON/TOML/.env. There are no unrelated environment variables, binaries, or external services requested. The TOML support is conditional on Python 3.11+ (tomllib), which matches the description.
Instruction Scope
Runtime instructions tell the agent to run the included Python script (scripts/confmt.py) on user-supplied config files or stdin. The script performs local file reads, parsing, key flattening, and stdout printing. It does not reference external endpoints, hidden files, or additional environment variables beyond what the user provides. Behavior is scoped to the stated functionality.
Install Mechanism
There is no install spec; this is instruction-only with code files bundled. The script has zero external package dependencies and uses only the standard library. No remote downloads, package installs, or archive extraction are present.
Credentials
The skill requires no credentials, no environment variables, and no config paths. The code reads only files the user explicitly passes (or stdin). There are no requests for unrelated secrets or other services.
Persistence & Privilege
always is false and the skill does not attempt to modify agent configuration or other skills. It will run only when invoked. No elevated or persistent privileges are requested.
Assessment
This skill appears to do exactly what it says: local parsing, formatting, flattening, and diffing of config files. Before running, confirm you trust the included Python files (they're bundled and readable) and run them on only files you intend to process — the tool will read any file path you give it. If you need TOML support, run it with Python 3.11+ so tomllib is available. There is no evidence of network I/O or secret-exfiltration code, but as with any script, avoid pointing it at directories containing secrets unless you intend to process them.

Like a lobster shell, security has layers — review code before you run it.

latestvk972b00sdcerq8z81m4ys32dgx83pc89

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments