test1
v1.0.0Manage Trello boards, lists, and cards via the Trello REST API.
⭐ 1· 1.4k·2 current·2 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description align with requirements: only jq and TRELLO_API_KEY/TRELLO_TOKEN are requested, which are appropriate for calling the Trello REST API.
Instruction Scope
SKILL.md contains explicit curl commands targeting api.trello.com and only references the declared env vars; it does not instruct reading unrelated files or environment variables.
Install Mechanism
No install spec or external downloads — instruction-only skill that relies on existing curl/jq on the host, which is the lowest-risk install approach.
Credentials
Requested env vars are exactly TRELLO_API_KEY and TRELLO_TOKEN; both are necessary and proportionate for the described Trello operations.
Persistence & Privilege
The skill does not set disable-model-invocation or always: true, so the model could autonomously invoke these instructions if allowed by the platform; since the tokens grant full Trello access, users should be aware of potential automated API calls.
Assessment
This skill is internally consistent and does what it says: it runs curl commands against Trello using TRELLO_API_KEY and TRELLO_TOKEN and formats responses with jq. Before installing, ensure you trust whoever manages the agent because the provided token/key grant full Trello access (read/write) and the model could call the API when invoked. Use least-privilege tokens if possible (short-lived or limited-scope), store credentials securely, and revoke the token if you stop using the skill. Also ensure jq and curl are available on the host.Like a lobster shell, security has layers — review code before you run it.
latestvk971w862t4rvgjv2td7zdbdqp980kngg
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📋 Clawdis
Binsjq
EnvTRELLO_API_KEY, TRELLO_TOKEN