ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Budget Planner

v1.0.0

预算规划 - 收支预算、分类管理、超支提醒

0· 79·0 current·0 all-time
by@kaising-openclaw1

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for kaising-openclaw1/budget-planner.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Budget Planner" (kaising-openclaw1/budget-planner) from ClawHub.
Skill page: https://clawhub.ai/kaising-openclaw1/budget-planner
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install budget-planner

ClawHub CLI

Package manager switcher

npx clawhub@latest install budget-planner
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description and SKILL.md consistently describe a local CLI budget planner (set budget, record expenses, progress, alerts). However the _meta.json lists a dependency on 'curl' that is not referenced in SKILL.md, and README suggests installing via 'npx clawhub@latest install budget-planner' while the registry metadata lists no install spec — minor inconsistencies in how the skill is expected to be acquired/run.
Instruction Scope
The runtime instructions only instruct running 'clawhub' CLI commands and show example usage; they do not request arbitrary file reads, secrets, or external endpoints. They do assume a local 'clawhub' command is present (or that the user has installed it).
!
Install Mechanism
No formal install spec is included in the registry entry, but README suggests using 'npx clawhub@latest install budget-planner' which would download code at install time. That means actual installation behavior is unspecified here — downloading via npx can pull arbitrary code from npm and is higher risk than an instruction-only skill. Also _meta.json's 'requires' field (curl) conflicts with the registry's declared requirements.
Credentials
The skill does not request any environment variables, credentials, or config paths. This is proportional for a local budgeting helper. No sensitive env names or tokens are declared.
Persistence & Privilege
always is false and model invocation is allowed (default). The skill does not request elevated or persistent system-wide presence in its manifest. There is no evidence it modifies other skills or system configs.
What to consider before installing
This skill appears to be a simple CLI-based budget helper, but there are a few red flags to check before installing: - Source & trust: The homepage and source are unknown and the README suggests installing via 'npx', which will fetch code from npm — confirm the package author and inspect the npm package before running it. - CLI dependency: SKILL.md expects a local 'clawhub' command; ensure 'clawhub' is legitimate and review what it does and where it stores data (local files, remote endpoints). - Metadata mismatch: _meta.json declares 'curl' as required while the registry shows no required binaries; this inconsistency could indicate stale or incomplete metadata. - Data handling: Because the skill interacts with finance data, verify where expense/budget data are stored and whether any network requests are made by the installer/CLI (inspect package code if possible). If you want to proceed safely: fetch and inspect the npm package contents (or the clawhub tool) before running, or run installation in an isolated environment (VM/container). If you need, I can list exact checks to perform on the npm package or on the 'clawhub' binary before trusting it.

Like a lobster shell, security has layers — review code before you run it.

latestvk97easxec6d5h7nd46c2pcd54985a093
79downloads
0stars
1versions
Updated 6d ago
v1.0.0
MIT-0
@kaising-openclaw1
latest
Download

Budget Planner

预算规划工具,帮你合理花钱。

功能

  • ✅ 收支预算
  • ✅ 分类管理
  • ✅ 超支提醒
  • ✅ 月度报告
  • ✅ 储蓄目标

使用

# 设置预算
clawhub budget set --category "dining" --amount 2000 --month "2026-04"

# 记录支出
clawhub budget expense --category "dining" --amount 100

# 查看进度
clawhub budget progress --month "2026-04"

# 超支提醒
clawhub budget alert --threshold 90

定价

版本价格功能
免费版¥0基础功能
Pro 版¥39全部功能
订阅版¥9/月Pro+ AI 建议

Comments

Loading comments...