ClawHub

News Aggregator

v1.0.3

国内外社会、科技、军事新闻汇总。自动搜索、筛选、整理新闻要点。

10· 11.1k·124 current·130 all-time
byhtten@httencn
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (news aggregation) match the instructions: enumerated news sources, search/filter/organize workflow, and a clear output format. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
SKILL.md stays on-topic (search sources, filter, summarize). It references using 'tavily or web_fetch' to search/fetch content — this is vague about which network tool will be used and how it handles rate-limiting, robots.txt, or paywalled content, but it is still within the skill's purpose.
Install Mechanism
No install spec and no code files; the skill is instruction-only so nothing is written to disk or installed by the skill itself.
Credentials
No environment variables, credentials, or config paths are requested. The declared requirements are minimal and proportional to a web-scraping/news-aggregation task.
Persistence & Privilege
always is false and the skill does not request persistent system privileges or to modify other skills' settings. Normal autonomous invocation is allowed but not escalated by this skill's metadata.
Assessment
This skill is internally consistent for aggregating news, but before installing consider: (1) confirm your agent is allowed to fetch external web pages and whether you accept the agent accessing the listed news domains; (2) scraping may hit paywalls or violate sites' terms — check robots.txt and legal constraints; (3) the instructions are vague about which network fetch tool will be used ("tavily"/"web_fetch") and how rate-limits, retries, or content deduplication are handled — if you rely on it in production, ask the author for concrete fetch/timeout/error handling and caching; (4) aggregated news can include misinformation—verify high-impact items against authoritative sources before acting; (5) absence of code/scan findings only means there was nothing to statically analyze, not that the skill is risk-free. If any of these are concerns, request a version that specifies the exact fetch mechanism, error handling, and a policy for respecting site terms.

Like a lobster shell, security has layers — review code before you run it.

latestvk977nktc7vmwkmr7rpn16qx4yx81rbv9

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments