ClawHub

Nuberea

v1.0.0

Bible research platform for AI agents. NuBerea provides direct access to original-language Hebrew and Greek morphology, the LSJ and BDB lexicons, KJV Bible t...

0· 64·0 current·0 all-time
by@streamsapps
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (Bible research, morphology, lexica, SQL analytics) match the provided tool list and example SQL workflows; nothing requested by the skill (no env vars, no binaries, no installs) appears unrelated to that purpose.
Instruction Scope
SKILL.md confines the agent to calling MCP tools and read-only SQL (examples show SELECT-only queries). It does not instruct reading local files, environment variables, or contacting arbitrary endpoints. Note: allowing freeform SELECT SQL grants broad read access to all included datasets — this is expected for analytics but worth noting as a scope of data access.
Install Mechanism
Instruction-only skill with no install spec and no code files — minimal footprint and nothing written to disk during install.
Credentials
No environment variables, credentials, or config paths are requested. That matches the described functionality (public/read-only dataset queries).
Persistence & Privilege
always is false and the skill does not request elevated or persistent presence or modification of other skills or system settings. Autonomous invocation is allowed by default but is not combined with other red flags here.
Scan Findings in Context
[regex-scan-none] expected: Static scanner found no code patterns because this is an instruction-only skill (SKILL.md + references). That is expected; the security surface is the instructions and the external MCP tools they reference.
Assessment
This skill appears internally consistent for Bible research: it only instructs using hosted MCP tools and read-only SQL and asks for no local credentials. Before installing, consider: (1) Trust and provenance — the author and MCP backend are unknown; verify the data source/operator if you care about privacy or provenance. (2) Data exposure — the agent may send any user-provided query text to the remote MCP service; avoid entering sensitive/personal data in queries. (3) SQL scope — 'run_sql' is described as SELECT-only, but confirm enforcement on the server side if you rely on it for safety. (4) Licensing/copyright — some biblical resources and lexica have license restrictions; verify permitted use if you plan to redistribute results. If these points are acceptable, the skill is coherent to install.

Like a lobster shell, security has layers — review code before you run it.

latestvk973s1zwxhc8vfe54841kypt1984sdrz

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments