ClawHub

orbcafe-stdreport-workflow

v1.0.1

Build ORBCAFE standard report/list pages with CStandardPage, CTable, CSmartFilter, useStandardReport, persistence, and quickCreate/quickEdit/quickDelete usin...

0· 242·1 current·1 all-time
by@shenruiyang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name and description match the SKILL.md and reference files: all instructions focus on constructing CStandardPage/CTable/CSmartFilter-based pages and enforcing persistence/i18n/identity guardrails. There are no unrelated required env vars, binaries, or config paths.
Instruction Scope
Runtime instructions limit themselves to selecting component patterns, producing paste-ready code snippets, running common npm build/dev commands, and verifying UI behaviors. They do not instruct reading arbitrary system files, exfiltrating data, or calling unexpected network endpoints. The SKILL.md does refer to repository paths (e.g. skills/orbcafe-ui-component-usage/...) which are expected project-local references for context.
Install Mechanism
There is no install spec in the registry (instruction-only). The SKILL.md advises running npm install/npm run build locally — which is appropriate for a UI recipe. It does not point to downloads, unknown URLs, or extract operations.
Credentials
The skill declares no required environment variables or credentials and the instructions do not request secrets. The npm dependencies mentioned are relevant to building the UI examples (orbcafe-ui, MUI, date libs).
Persistence & Privilege
The skill is not always-on, does not request persistent privileges, and does not modify other skills or system-wide configs. Model invocation is allowed (platform default) but there are no additional elevated capabilities requested by the skill.
Assessment
This skill is essentially a set of templates and guardrails for implementing ORBCAFE report pages. Before following its npm/build instructions: (1) verify the origin and version of the orbcafe-ui package you will install (ensure it's from a trusted registry or your org), (2) inspect the package.json/postinstall scripts of any third-party packages to be comfortable running npm install, (3) run builds in a dev/sandbox environment (not production) since examples may start dev servers, and (4) follow the guardrails about metadata.id/appId and mapping limit=-1 to avoid backend issues. The skill itself does not request credentials or perform network exfiltration, but exercising caution with third-party packages and running build scripts is recommended.

Like a lobster shell, security has layers — review code before you run it.

latestvk974jsd95hc3abkztashbjhxpx82yz3e

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments