ClawHub

sci-journal-search

v1.5.0

查询并提供SCI期刊的新锐(中科院)分区、JCR小类分区和Top期刊标识,支持按期刊名或ISSN检索。

0· 81·0 current·0 all-time
bySong Xianfeng@songxf1024
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description claim SCI journal partition and LetPub lookups; the package contains scripts that (1) query xr-scholar via HTTP to get partition data and (2) emit a JSON instruction for the agent to open LetPub (browser-driven) for additional metrics. Declared files (abbreviations.json, partition references) and code match this purpose. Nothing requests unrelated services or credentials.
Instruction Scope
SKILL.md instructs the agent to perform fast HTTP queries against xr-scholar and, optionally, to open LetPub pages using the agent's browser tool and then close the browser. The included scripts only read their local abbreviations file and request the two documented sites. They do not instruct reading arbitrary system files or environment variables, nor do they transmit local data to unexpected endpoints. The LetPub flow requires the agent to open a URL from the skill (search URL returned by query-letpub.py) — this is expected for browser-driven scraping.
Install Mechanism
No install spec; the skill is instruction + scripts only (lowest install risk). Files are provided in the skill bundle; there are no downloads from untrusted URLs or archive extraction steps in an install step.
Credentials
The skill declares no required environment variables, credentials, or config paths. The code performs network requests to the documented sources (https://www.xr-scholar.com and https://www.letpub.com.cn) only and reads its local abbreviations.json. No SECRET/TOKEN/PASSWORD env variables are requested or accessed.
Persistence & Privilege
always is false and the skill does not attempt to modify other skills or system-wide configs. It will request the agent's browser tool be used for LetPub queries, but that is within its stated scope and does not elevate privileges or persist beyond the query.
Assessment
This skill appears coherent and implements exactly what it claims: quick xr-scholar queries plus an optional LetPub browser-based lookup. Before installing, note: (1) The LetPub flow requires the agent's browser tool and will open the LetPub search URL returned by the script — ensure you trust the agent/browser tool because it will navigate and parse web pages. (2) No credentials or secrets are requested. (3) Minor implementation note: the LetPub search parameter isn't URL-encoded in query-letpub.py, which may produce malformed URLs for unusual input (not a security issue but can affect results). If you are comfortable allowing the agent to open web pages on your behalf, this skill is proportionate to its stated function.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dxg85t4wf1d01nk0xv29qvh83ha6z

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments