ClawHub

Missing Error Handling

v1.0.0

Code handles only the happy path — external calls, I/O, and parsing have no failure handling and crash on anything unexpected.

0· 47·1 current·1 all-time
by@mvogt99

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for mvogt99/missing-error-handling.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Missing Error Handling" (mvogt99/missing-error-handling) from ClawHub.
Skill page: https://clawhub.ai/mvogt99/missing-error-handling
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install missing-error-handling

ClawHub CLI

Package manager switcher

npx clawhub@latest install missing-error-handling
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name, description, and the SKILL.md all describe the same thing: guidance on handling failures. The skill declares no binaries, env vars, or install steps that would be unexpected for a documentation-only guidance skill.
Instruction Scope
The SKILL.md contains developer guidance and checklists (timeouts for network calls, catching specific exceptions, logging, etc.). It does not instruct the agent to read files, access environment variables, call external endpoints, or run commands, so it stays within the stated purpose.
Install Mechanism
There is no install spec and no code files. Being instruction-only means nothing is written to disk or executed by the install process—this is the lowest-risk install profile.
Credentials
The skill declares no required env vars, credentials, or config paths. The guidance does not reference any secrets or unrelated services.
Persistence & Privilege
always is false and the skill is user-invocable. It does not request persistent presence or special privileges; being instruction-only it cannot modify other skills or system settings.
Assessment
This skill is essentially a short checklist and best-practices note about error handling — it poses minimal risk because it contains no code, no install steps, and asks for no credentials. You can safely read and use its advice, but remember it is only guidance: it won't automatically fix your code or enforce checks. If you expect an automated tool, look for a skill that provides linters or runtime wrappers; otherwise incorporate the suggested checks into your codebase and CI. Confidence is high because the skill is internally consistent and contains no surprising requirements.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

OSmacOS · Linux · Windows
latestvk97308cqtfqtknrnxea8py73rx85kz2w
47downloads
0stars
1versions
Updated 1d ago
v1.0.0
MIT-0
macOS, Linux, Windows
@mvogt99
latest
Download

missing-error-handling

Every external interaction is a source of failure: network, disk, subprocess, parsing, third-party API. If the code assumes they always succeed, a production run will hit the first unexpected condition and crash unhelpfully.

Symptoms

  • HTTP calls without status-code checks and without timeout.
  • File I/O with no handling for missing files, permission denied, or partial reads.
  • Subprocess calls that ignore non-zero exit codes.
  • JSON.parse / yaml.load with no handling of malformed input.
  • Broad except: / catch (e) {} that swallows everything without logging.

What to do

  • For each external call, list the failure modes explicitly: timeout, non-2xx status, missing resource, malformed payload, permissions. Handle each with specific recovery or a loud failure.
  • Add a timeout to every network call. No exceptions.
  • When catching, catch the specific exception types you can actually recover from. Let unknown errors propagate with context.
  • When swallowing is unavoidable, log the full error with context — at minimum, the operation that failed and the arguments.
  • Distinguish "user-visible error" (explain, ask them to retry or adjust) from "internal error" (log with stack, fail fast). Don't leak internal errors to users.

Comments

Loading comments...