ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

室内设计自动预算生成器

v1.0.0

自动从DXF提取户型信息,结合设计师历史报价生成符合原模板的家装或工装预算Excel,快速准确。

0· 26·0 current·0 all-time
by@137984917-cyber·duplicate of @137984917-cyber/interior-budget-auto

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for 137984917-cyber/interior-auto-budget.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "室内设计自动预算生成器" (137984917-cyber/interior-auto-budget) from ClawHub.
Skill page: https://clawhub.ai/137984917-cyber/interior-auto-budget
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install interior-auto-budget

ClawHub CLI

Package manager switcher

npx clawhub@latest install interior-auto-budget
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill claims to read DXF and produce a budget Excel (which the code implements), but the code unconditionally loads a standard project library from a hard-coded absolute path (/Users/laobaobei/.openclaw/workspace/标准预算项目库.json) that is not documented in SKILL.md or declared in requirements. The skill package does not include that JSON. Requiring a user-specific file path is disproportionate to the described purpose and likely to cause failures or unexpected behavior.
!
Instruction Scope
SKILL.md instructs only how to run the script with DXF and output path and claims '完全本地运行' (data does not leave machine). The script stays local and has no network calls, but SKILL.md does not mention the mandatory external JSON library file or its expected schema. The code also mixes Chinese and English field names (checks p["综合单价"] but later uses p["combined_price"]) indicating a mismatch between expected data format and what's actually used — the runtime instructions omit this important dependency and data format contract.
Install Mechanism
This is an instruction-only skill with a single Python script and no install spec. That lowers install-time risk: no remote downloads or package installs are driven by the skill itself. Declared Python dependencies (ezdxf, openpyxl) match operations in the script.
!
Credentials
The skill declares no required environment variables or config paths, yet the script expects a specific JSON file at a fixed absolute path in a user's home directory. This implicit dependency on a local file is not proportionate to the declared requirements and could cause the script to read unexpected user data or fail. No secrets are requested.
Persistence & Privilege
The skill does not request persistent/always-on presence and does not modify other skills or system settings. It runs as a user-invoked command and does local file I/O only.
What to consider before installing
Things to check before installing/using: - The script expects a standard project JSON at /Users/laobaobei/.openclaw/workspace/标准预算项目库.json but SKILL.md does not mention this. Ask the author to provide the JSON or make the path configurable (argument or relative file in the package). - Inspect or provide a sample of the expected JSON schema. The code references fields like '综合单价' and 'combined_price' inconsistently — ensure your project library matches what the script expects or update the script. - Because the path is absolute and user-specific, run the script in a safe test folder first to prevent accidental reading of unrelated files. Consider editing the script to accept a --library argument or to look for a library file in the current working directory. - There are no network calls in the code (good), but validate the JSON file contents (especially prices) before trusting outputs. If the author can supply a corrected SKILL.md that documents the library dependency and/or provide the JSON bundled with the skill, the concerns here would be resolved and the package would likely be coherent.

Like a lobster shell, security has layers — review code before you run it.

latestvk973jq8xs075egq27vt6fbdq5h85qg3g
26downloads
0stars
1versions
Updated 7h ago
v1.0.0
MIT-0
@137984917-cyber
latest
Download

室内设计自动预算生成器

描述

从DXF提取户型信息,基于设计师历史报价库自动生成完整家装/工装预算Excel,严格匹配原有模板格式,不漏项,价格贴合本地市场。

功能

  • 自动提取DXF户型文字信息,确认层数面积
  • 基于设计师历史报价自动构建标准项目库
  • 按楼层/空间自动分配项目,估算工程量
  • 生成和原有模板格式完全一致的Excel预算表
  • 支持家装/工装两种模式

作者

老冷 @ 温州隐室空间设计

分类

设计工具 / 预算自动化

触发词

  • 生成预算
  • 预算自动生成
  • 室内设计预算
  • 家装预算

依赖

  • python3
  • openpyxl
  • ezdxf
  • python-pptx (可选,用于PPT生成)

使用方法

  1. 设计师在CAD中将图纸导出为DXF格式
  2. 放入指定文件夹
  3. 运行 generate_budget.py /path/to/your/file.dxf output.xlsx
  4. 等待生成,直接拿到可编辑的预算表
  5. 微调工程量即可交付客户

优势

  • 保留设计师原有报价体系,贴合本地市场价
  • 半小时出初稿,比手工快10倍
  • 不漏小项目(钢筋、纤维网这些不容易漏了)
  • 完全本地运行,数据不外出

示例

python generate_budget.py ~/Desktop/项目/户型.dxf ~/Desktop/龙虾/项目预算.xlsx

Comments

Loading comments...