ClawHub

Ledger Transaction Entry

v1.0.0

Convert natural-language spending/income statements into ledger JSONL records and append them into projects/data/YYYY/YYYY-MM.jsonl. Use when the user descri...

0· 41·0 current·0 all-time
by@shing19
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (convert NL transactions to ledger JSONL and append to projects/data/YYYY/YYYY-MM.jsonl) match the instructions: parse fields, consult projects/docs/CATEGORY_CATALOG.md, and run a local Python script to append to month files. No unrelated credentials, services, or external endpoints are requested.
Instruction Scope
Instructions direct the agent to read files under the repository (projects/docs/CATEGORY_CATALOG.md and projects/data/*), determine the correct month file, and run a local script (projects/scripts/add_ledger_entry.py) to append records. They also instruct generating charts into projects/reports and ensuring those outputs are git-ignored. This is consistent with the stated purpose, but the skill assumes the presence and correct behavior of the local python script and that the agent is allowed to modify .gitignore and write files. The SKILL.md also shows concrete shell commands (date and python3) but the required-binaries list is empty (minor inconsistency).
Install Mechanism
This is an instruction-only skill with no install spec and no downloads — lowest risk. It does assume python3 and standard shell utilities are available at runtime, but it does not install anything itself.
Credentials
No environment variables, credentials, or external tokens are requested. The only environment-related behavior is setting TZ='Asia/Taipei' when computing the date, which is appropriate for determining the target month file.
Persistence & Privilege
always is false and the skill does not request persistent platform privileges. It instructs writing to project files and .gitignore within the repository (expected for a write/ledger skill) but does not modify other skills or system-wide settings.
Assessment
This skill appears coherent for appending transactions to a project ledger, but before using it: 1) verify that projects/scripts/add_ledger_entry.py actually exists in your workspace and review its code to confirm it performs only the expected append and timestamp actions; 2) make a backup copy of relevant month files (projects/data/YYYY/YYYY-MM.jsonl) before allowing writes; 3) confirm you want the agent to be allowed to modify .gitignore and write files under projects/reports; 4) ensure python3 is available in the runtime environment (SKILL.md assumes python3 but the skill metadata doesn't declare it). If any of those checks fail or the script is missing, the skill should not be allowed to run writes until resolved.

Like a lobster shell, security has layers — review code before you run it.

latestvk974yrx72bzfe1d1xkq53wkved83z26h

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments