Apple Docs
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: apple-docs Version: 1.0.0 The skill bundle is benign. The `SKILL.md` file serves as straightforward documentation and does not contain any prompt injection attempts. The `cli.js` script fetches data from official Apple developer documentation URLs and from a specified GitHub repository (`https://raw.githubusercontent.com/kimsungwhee/apple-docs-mcp/`) for WWDC video data. This external data source, while a supply chain consideration, is explicitly mentioned in `SKILL.md` and fetches only JSON data, not executable code, aligning with the skill's stated purpose. There is no evidence of credential theft, data exfiltration to unauthorized endpoints, malicious execution, persistence mechanisms, or obfuscation.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
WWDC search results and transcripts may change based on the external repository’s contents, rather than only Apple-hosted or locally bundled data.
The CLI fetches WWDC data from a third-party GitHub raw URL at runtime. This is purpose-aligned for WWDC lookup, but users should know results depend on an external, unpinned data source.
VIDEOS: 'https://raw.githubusercontent.com/kimsungwhee/apple-docs-mcp/main/data/wwdc/all-videos.json'
Use the skill for documentation lookup, but verify important WWDC information against Apple’s official pages if accuracy or provenance matters.