ClawHub

Shopify Product Writer

v1.0.1

Generates SEO-optimised Shopify product titles, descriptions, and meta fields from a simple product brief — ready to paste directly into your store.

0· 84·0 current·0 all-time
by@tetsuakira-vk
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name and description (Shopify product titles, descriptions, meta fields, tags) match the SKILL.md and README. The skill requests no binaries, env vars, or config paths — all appropriate for a copywriting/SEO generator.
Instruction Scope
SKILL.md is narrowly scoped to receiving a product brief and producing five clearly formatted Shopify listing sections. It does not instruct the agent to read system files, access environment variables, or call external endpoints. It documents handling for sparse or conflicting briefs and records SEO rules — all within the stated purpose.
Install Mechanism
The registry metadata shows no install spec and the skill is instruction-only (no code files). README includes an example 'npx clawhub install …' command (usage/install hint), but there is no install specification bundled with the skill. This is an informational/README item rather than an active installer; still, running arbitrary npx commands can execute remote code, so users should only run that command from trusted sources.
Credentials
The skill requests no environment variables, credentials, or config paths. The README mentions a paid 'Pro' offering (external link) but that is marketing material and does not change runtime requirements. If future Pro features ask for competitor URLs or CSV uploads, users should be aware those inputs could contain external links or data to be processed.
Persistence & Privilege
always is false and the skill does not request persistent system presence or elevated privileges. Autonomous invocation is enabled by default (normal for skills) but there are no additional sensitive accesses that increase risk.
Assessment
This skill is instruction-only and coherent with its purpose: it generates paste-ready Shopify product listings and asks for no secrets or installs. Before using, review outputs for accuracy (sizes, claims, numbers), trademark or regulatory issues, and SEO duplicates. Do not paste private credentials or sensitive data into briefs. If you run the README's 'npx' install command, only do so if you trust the package source (npx executes remote code). If a future or 'Pro' version asks for Shopify API keys or bulk uploads/competitor URLs, treat those requests with extra caution and verify what external endpoints or network calls will be made.

Like a lobster shell, security has layers — review code before you run it.

latestvk97e0fbjwvc2azz9xrbap82s5x83n8ym

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments