ClawHub

Cold Chain Risk Calculator

v0.1.0

Calculate cold chain transport risks

0· 100·0 current·0 all-time
byAIpoch@aipoch-ai·duplicate of @shanruoyu/cold-chain-risk-calculator
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the included code: scripts/main.py implements a simple cold-chain risk calculation based on route, duration, and packaging. No external APIs, credentials, or unexpected binaries are required. Minor mismatch: the SKILL.md references file I/O and 'Temperature monitoring' features and a security checklist for input file handling, but the provided script only reads CLI arguments and does not read or write files.
Instruction Scope
SKILL.md usage directs the agent to run the local Python script with CLI args, which is exactly what the code does. The SKILL.md's risk table and checklist mention file reads/writes and prompt-injection protections; those are good hygiene but are not required by the current script. No instructions request environment variables, system-wide config, or external endpoints.
Install Mechanism
No install spec is present; this is instruction-only plus a small included Python file. No downloads, package installs, or archive extraction are requested.
Credentials
The skill declares no required environment variables, credentials, or config paths. The code does not access environment variables or secrets.
Persistence & Privilege
The skill does not request always:true and does not modify system or other-skill configuration. It runs as a local command when invoked.
Assessment
This skill is a lightweight, local Python script and appears coherent for calculating simple cold-chain risk scores. Before installing/running: (1) Inspect the included scripts (you already have them); they only use argparse and simple math. (2) Run it in a sandbox or with non-sensitive test inputs to confirm behavior. (3) Note that SKILL.md mentions file I/O and monitoring features that the current script does not implement — if you expect file imports/exports, ask the author for a version that matches those claims. (4) Because the skill runs code locally, avoid running untrusted modifications and confirm there are no hidden network calls (current code has none).

Like a lobster shell, security has layers — review code before you run it.

latestvk975fg5a5gn6he46vb7kee50hn834v34

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments