ClawHub

Current View Triage

v1.0.0

Turn one Campus Copilot snapshot or MCP-backed current view into a plain-language what-to-do-first answer for a student.

0· 119·1 current·1 all-time
byYifeng[Terry] Yu@xiaojiou176
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (read-only triage of Campus Copilot snapshots/current views) matches the declared inputs and listed MCP tools; the skill does not request unrelated credentials, binaries, or config paths.
Instruction Scope
SKILL.md confines the agent to read-only operations over snapshots or MCP-backed current views, lists the exact outputs (top_action, why_now, evidence_used, trust_gaps), and explicitly forbids claiming live-session truth or mutating site state.
Install Mechanism
There is no registry install spec in the package itself, but the included references/INSTALL.md and mcp-setup.md instruct operators to clone and run a third-party GitHub repo (xiaojiou176-open/campus-copilot) and run pnpm scripts or download a GitHub release asset. Using public GitHub and pnpm is common, but it means operators will run external code — reviewers should inspect that repo and its start/build scripts before executing them.
Credentials
The skill declares no required environment variables, no credentials, and no config paths. Sample MCP config snippets require replacing an absolute path to a local clone, which is expected and proportional.
Persistence & Privilege
always is false and the skill is user-invocable. It does not request persistent presence or try to modify other skills' configs; runtime guidance describes only read-only triage and optional export of artifacts on demand.
Assessment
This skill appears coherent and read-only: it needs either a snapshot/current-view export or a connected Campus Copilot MCP server and does not request credentials. Before you run the optional install steps, manually review the referenced GitHub repo and its package.json/start scripts (the INSTALL.md advises cloning xiaojiou176-open/campus-copilot and running pnpm). Running third-party npm/pnpm projects can execute arbitrary code, so either inspect the repository first, run it in a sandboxed environment, or prefer supplying prebuilt snapshot exports instead of starting the MCP server. Also confirm you only provide snapshot data you are comfortable sharing; the skill itself does not include any hidden network endpoints or credential exfiltration instructions.

Like a lobster shell, security has layers — review code before you run it.

campusvk97a4czqghwssn7ttxymz5607x84htadcampus-copilotvk97a4czqghwssn7ttxymz5607x84htadlatestvk97a4czqghwssn7ttxymz5607x84htadmcpvk97a4czqghwssn7ttxymz5607x84htadread-onlyvk97a4czqghwssn7ttxymz5607x84htadstudentvk97a4czqghwssn7ttxymz5607x84htadtriagevk97a4czqghwssn7ttxymz5607x84htad

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments