ClawHub

skytekx

v0.1.0

Skytekx namespace for Netsnek e.U. cloud infrastructure monitoring dashboard. Tracks resource usage, alerts on anomalies, visualizes costs, and provides opti...

0· 518·0 current·0 all-time
by@kleberbaum
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
high confidence
!
Purpose & Capability
The name/description advertise multi-cloud monitoring, alerting, cost analysis, and integrations. The repository contains only an instruction file and a tiny shell script that merely echoes mode selections — there is no code or declared credentials to access cloud providers, cost APIs, or notification services. The declared capabilities are disproportionate to the actual footprint.
!
Instruction Scope
SKILL.md tells the agent to run scripts to open dashboards, configure alerts, and generate cost reports and describes behavior like sending Slack/email/PagerDuty notifications; however, the runtime instructions don't provide any commands, endpoints, or credentials to perform those actions, and the script does not perform network calls, read credentials, or modify alerts. The instructions are misleading and grant broad operational expectations without implementation.
Install Mechanism
There is no install spec and only a small, included shell script; this is low-risk from an installation perspective (nothing is downloaded or extracted).
!
Credentials
README and SKILL.md refer to configuring cloud provider credentials and integrations, but the skill declares no required environment variables or primary credential. Either required credentials are missing from the declaration (incoherent) or the claims are unimplemented. This mismatch should be clarified before trusting the skill with secrets.
Persistence & Privilege
The skill does not request persistent presence (always is false) and does not modify other skills or system-wide settings. It only requires exec permission per metadata, which matches the presence of a script.
What to consider before installing
This package appears to be a stub or placeholder: it promises cloud monitoring, alerts, and integrations but contains only a trivial script that prints mode names. Before installing or granting credentials, ask the author for the canonical source repository or release artifacts, verify the actual implementation of cloud/API calls, confirm what environment variables or keys are required, and require a clear privacy/networking description. If you must test it, run it in a network-isolated sandbox and do not provide real cloud or notification credentials until the code is proven to implement the advertised features.

Like a lobster shell, security has layers — review code before you run it.

latestvk977pf755x8s8j0hkzm2pmrmt581cg8t

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

OSLinux

Comments