ClawHub

Pipeworx climate

v1.0.0

Long-range climate projections from Open-Meteo — temperature trends from 1950 to 2050 with multi-model comparison

0· 55·0 current·0 all-time
byBruce Gutman@brucegutman
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the instructions: the SKILL.md shows how to query a climate projection endpoint and compare models. Required binary (curl) is appropriate for the provided curl example.
Instruction Scope
Instructions tell the agent to POST JSON-RPC queries to https://gateway.pipeworx.io/climate/mcp (expected for this pack). They do not instruct reading local files or unrelated env vars. Note: the SKILL.md suggests using 'npx mcp-remote@latest ...' to proxy calls — that would execute code downloaded from npm if run.
Install Mechanism
No install spec is included (instruction-only), which minimizes automatic disk writes. The provided setup snippet uses npx to run a remote package; that is not installed by this skill but would fetch and run code from npm if the user follows the setup.
Credentials
No environment variables, credentials, or config paths are requested. The skill only requires network access to the pipeworx gateway, which matches its purpose.
Persistence & Privilege
always is false and there's no request to persist settings, modify other skills, or access system configuration. The skill does not request elevated or persistent privileges.
Assessment
This pack is internally coherent and appears to do only what it claims: send climate queries to the Pipeworx/Open‑Meteo gateway. Before installing/use, confirm you trust the external endpoint (https://gateway.pipeworx.io) because queries (latitude/longitude and date ranges) are sent to that third party. If you plan to run the suggested setup, be aware 'npx mcp-remote@latest' will download and execute a package from npm—review that package (mcp-remote) or pin a vetted version if you want to avoid running unreviewed code. Avoid sending sensitive or private location identifiers unless you accept that they will be transmitted to the gateway.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ffxvp61vg6fmsf3b5btbj3x84d041

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🌍 Clawdis
Binscurl

Comments