ClawHub

COMMS.md Reader

v1.1.0

Read and adapt to someone's COMMS.md before contacting them. Use when: (1) drafting a message, email, or outreach to someone who has a COMMS.md, (2) scheduli...

0· 476·0 current·0 all-time
byStedman Halliday@stedmanhalliday
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the instructions: the skill's only job is to read COMMS.md content and adapt messaging. It declares no binaries, env vars, or installs — all proportionate for a document-parsing/adaptation helper.
Instruction Scope
The SKILL.md constrains reads to user-provided URLs/files, known local files the agent already has access to, or public URLs confirmed by the user, and explicitly forbids crawling or following redirects. This is appropriate, but it relies on the agent respecting those limits: if the agent already has broad filesystem or web access, the skill could read files the user may not expect. Verify your agent's existing access policies and that it asks for confirmation before fetching public COMMS.md files.
Install Mechanism
No install spec and no code files (instruction-only). Nothing will be written to disk or downloaded by the skill itself, which minimizes install-time risk.
Credentials
The skill requests no environment variables, credentials, or config paths — appropriate for a document-reading/adaptation guide.
Persistence & Privilege
always:false and normal model invocation are set. The skill does not request permanent presence or elevated privileges and does not instruct modifying other skills or system-wide configs.
Assessment
This skill appears coherent and low-risk because it's instruction-only and asks for no secrets or installs. Before installing: confirm what your agent already has access to (workspaces, local vaults, or web-fetching permissions), so the skill won't read unexpected local files; ensure the agent will always ask you before fetching COMMS.md from public websites; and verify the agent will show you the adapted draft and any flagged conflicts rather than sending messages autonomously. If you need stricter guarantees, restrict the agent's filesystem/network access or only provide COMMS.md content via paste/explicit URL at runtime.

Like a lobster shell, security has layers — review code before you run it.

latestvk97840srghwvrf0qz2x1d85wvx81m7nv

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments