Invoice Generator Pro
v1.0.0Generate professional invoices in Markdown or HTML by specifying client, items, tax, currency, dates, and output format.
⭐ 0· 535·0 current·0 all-time
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description match the included files. The bash script, HTML template, and examples all align with 'invoice generation'. Minor mismatch: the script relies on the 'bc' utility for arithmetic but the skill metadata and SKILL.md declare no required binaries.
Instruction Scope
SKILL.md instructs the agent to run the included generate-invoice.sh with CLI args. The script only reads its companion template.html, processes CLI inputs, and writes output to stdout or a specified file — it does not access unrelated system files, environment variables, or external network endpoints.
Install Mechanism
No install spec (instruction-only plus shipped script/template) — nothing is downloaded or installed. This is the lowest-risk install pattern.
Credentials
No environment variables, secrets, or external credentials are requested. The requested capabilities are proportional to an invoice generator.
Persistence & Privilege
The skill does not request always:true, does not modify other skills or global agent settings, and does not require persistent system presence.
Assessment
This skill is internally coherent and appears safe for routine use, but consider the following before installing or running it:
- Dependency: The script uses the 'bc' command for math but the skill metadata doesn't declare it. Ensure 'bc' is present on your system or the script will fail.
- Output overwrite: If you pass --output <path>, the script will overwrite that file without further confirmation. Avoid writing to sensitive locations.
- Unescaped user input in HTML: Fields like description, client name, and email are inserted verbatim into template.html (no escaping). If you render generated HTML in a browser and include untrusted input, that could produce unwanted HTML injection. Sanitize user-provided fields when accepting them from untrusted sources.
- Safe usage: Review the shipped script and template (they're short and readable). If you plan to run this in an automated or multi-user environment, add input validation/sanitization and run with least privileges.
If you want higher assurance, ask the maintainer to (1) list 'bc' as a required binary in the metadata, (2) document any assumptions about file paths, and (3) optionally escape HTML when producing the HTML output.Like a lobster shell, security has layers — review code before you run it.
latest
Invoice Generator
Generate professional invoices in Markdown or HTML from simple inputs.
Usage
./generate-invoice.sh \
--client "Acme Corp" \
--email "billing@acme.com" \
--date "2026-02-22" \
--due "2026-03-22" \
--item "Web Development|40|150.00" \
--item "Design Review|5|120.00" \
--tax 10 \
--currency USD \
--invoice-number INV-001 \
--from "Shelly Labs" \
--format html
Parameters
| Flag | Description | Default |
|---|---|---|
--client | Client name (required) | — |
--email | Client email | — |
--date | Invoice date | today |
--due | Due date | +30 days |
--item | "Description|Qty|Rate" (repeatable) | — |
--tax | Tax percentage | 0 |
--currency | Currency code | USD |
--invoice-number | Invoice ID | INV-{timestamp} |
--from | Your name/company | — |
--format | md or html | md |
--output | Output file path | stdout |
Output
- Markdown: Clean table-based invoice
- HTML: Uses
template.html— professional, print-ready
Examples
# Quick markdown invoice
./generate-invoice.sh --client "Bob" --item "Consulting|10|100" --format md
# HTML invoice saved to file
./generate-invoice.sh --client "Acme" --item "Dev|40|150" --format html --output invoice.html
Comments
Loading comments...