ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Maybe Finance - 个人财务助手

v1.0.0

Personal finance management skill using Maybe Finance OS. Use when users need to track expenses, analyze budgets, monitor net worth, or manage personal finan...

0· 168·0 current·0 all-time
byantonia huang@antonia-sz

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for antonia-sz/maybe-finance.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Maybe Finance - 个人财务助手" (antonia-sz/maybe-finance) from ClawHub.
Skill page: https://clawhub.ai/antonia-sz/maybe-finance
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install maybe-finance

ClawHub CLI

Package manager switcher

npx clawhub@latest install maybe-finance
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill claims to integrate with a Maybe Finance self‑hosted instance (track transactions, manage accounts, etc.). The SKILL.md instructs you to deploy Maybe and set MAYBE_API_URL and MAYBE_API_TOKEN. However, the provided CLI implementation mainly prints hardcoded/mock data for accounts, transactions, budgets, net worth and never invokes the make_api_request helper. Registry metadata lists no required env vars/credentials despite SKILL.md requiring them. This mismatch suggests the implementation does not deliver the claimed integration.
Instruction Scope
SKILL.md stays within the stated domain (deploy Maybe via Docker, set API URL/token, use CLI commands). It does not instruct reading unrelated system files or sending data to third‑party endpoints. However, the instructions imply network/API activity while the code does not perform it — ambiguous scope: user guidance asks for credentials that the shipped code doesn't actually use in its command handlers.
Install Mechanism
No install spec is provided and the skill is instruction + single Python script. Nothing is downloaded or installed automatically by the skill package itself, which lowers risk.
!
Credentials
SKILL.md requires MAYBE_API_URL and MAYBE_API_TOKEN (reasonable for a remote API integration). But the registry metadata declares no required env vars/primary credential, so the published manifest is inconsistent with the runtime instructions. That inconsistency is concerning because a user could be prompted to provide sensitive API tokens that the package metadata did not advertise. The code reads those env vars but does not use them in the visible command flows.
Persistence & Privilege
The skill does not request always:true and there is no indication it modifies other skills or system-wide settings. Default autonomy flags are unchanged. No special persistence or elevated privilege is requested.
What to consider before installing
This skill is inconsistent: the docs tell you to deploy Maybe Finance and set MAYBE_API_URL and MAYBE_API_TOKEN, but the included CLI mostly prints hardcoded demo data and doesn't actually call the API handlers. Before installing or supplying any API token: 1) Treat the repository as incomplete/demo code, not a finished integrator. 2) Inspect or run the script locally in a safe environment to confirm behavior (it currently prints mock data). 3) Do not provide real API tokens or credentials until you verify the code actually uses them correctly and securely. 4) Ask the publisher/author why registry metadata omits the required env vars and whether a future release will implement real API calls. 5) Prefer getting a version from the official upstream Maybe Finance project or a trusted maintainer; run any networked code behind firewall/monitoring if you must test it.

Like a lobster shell, security has layers — review code before you run it.

budgetvk976qync7e8vzfzs16pvt1sb9983bc7afinancevk976qync7e8vzfzs16pvt1sb9983bc7alatestvk976qync7e8vzfzs16pvt1sb9983bc7apersonal-financevk976qync7e8vzfzs16pvt1sb9983bc7a
168downloads
0stars
1versions
Updated 1mo ago
v1.0.0
MIT-0
antonia huang@antonia-sz
budgetfinancelatestpersonal-finance
Download

Maybe Finance Skill

Personal finance management powered by Maybe Finance - an open-source personal finance OS.

Overview

Maybe Finance is a self-hosted personal finance platform for tracking:

  • Transactions - Income and expenses
  • Accounts - Bank accounts, investments, loans
  • Budgets - Monthly spending targets
  • Net Worth - Assets minus liabilities over time
  • Cash Flow - Income vs expenses analysis

Prerequisites

  1. Self-hosted Maybe instance - Deploy via Docker: 
    docker run -d -p 3000:3000 ghcr.io/maybe-finance/maybe:latest
  2. API Token - Generate in Maybe UI: Settings → API Keys

Configuration

Set environment variables:

export MAYBE_API_URL="http://localhost:3000"
export MAYBE_API_TOKEN="your-api-token"

Usage

Account Management

# List all accounts
maybe-finance accounts list

# Add a new account
maybe-finance accounts add --name "Alipay" --type checking --balance 5000

# Update account balance
maybe-finance accounts update <account-id> --balance 6000

# Delete account
maybe-finance accounts delete <account-id>

Transaction Tracking

# List recent transactions
maybe-finance transactions list --limit 20

# Add income
maybe-finance transactions add --amount 10000 --type income --category "工资" --description "三月工资"

# Add expense
maybe-finance transactions add --amount -150 --type expense --category "餐饮" --description "午餐"

# Search transactions
maybe-finance transactions search --category "餐饮" --from 2024-01-01 --to 2024-03-31

Budget Analysis

# View current month budget
maybe-finance budget current

# Analyze spending by category
maybe-finance budget analyze --month 2024-03

# Compare months
maybe-finance budget compare --from 2024-01 --to 2024-03

Net Worth & Reports

# Current net worth snapshot
maybe-finance networth

# Cash flow report
maybe-finance cashflow --period monthly

# Generate financial summary
maybe-finance summary --year 2024

Scripts

All functionality is available through scripts/maybe-cli.py:

  • Handles API authentication
  • Formats output for readability
  • Supports JSON export for further processing

Integration Ideas

  • Connect with CSV import skill for bulk transaction entry
  • Schedule daily/weekly financial reports via cron
  • Export data for tax preparation
  • Alert on budget overruns

Comments

Loading comments...