CNC Quote System

v1.0.0

CNC智能报价系统 - 基于RAG的制造零件报价工具。支持材料检索、成本估算、风险预警。Use when user needs CNC part quoting, manufacturing cost estimation, or knowledge base retrieval.

⭐ 0· 53·0 current·0 all-time

by@timo2026

MIT-0

Download zip

LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

Name/description (CNC quoting, material cost, risk warnings) match the included modules (cnc_quote_engine.py, hybrid_retriever.py, case_retriever.py, risk_control.py) and the declared dependencies (FAISS, numpy, pandas) used for retrieval and numeric work.

✓

Instruction Scope

SKILL.md only instructs installing Python deps and using local engine/retriever/risk controller APIs. Runtime behavior reads local config.json and cases.json, and does not instruct reading unrelated files, contacting unknown endpoints, or exfiltrating data.

ℹ

Install Mechanism

There is no platform install spec; SKILL.md tells users to pip install -r requirements.txt which pulls packages from PyPI (faiss-cpu, numpy, pandas). This is expected for a Python skill but carries normal package-install risks (native binaries, heavy deps like faiss). No downloads from unknown URLs or extract-from-URLs are present.

✓

Credentials

The skill requests no environment variables, credentials, or config paths. All file I/O is limited to included local files (config.json, cases.json). No unrelated secrets or external-service tokens are required.

✓

Persistence & Privilege

Skill does not request always:true and makes no changes to other skills or system-wide agent settings. It is user-invocable and allows autonomous invocation (platform default) but contains no elevated persistence behavior.

Assessment

This package appears coherent and implements a local CNC quoting and retrieval tool. Before installing, consider: (1) review requirements.txt and only install packages you trust (faiss-cpu is a heavy native dependency and may require build tools); (2) run the code in a sandbox or virtual environment to avoid contaminating your system Python; (3) verify or edit config.json and populate cases.json with real data as needed (cases.json is empty in the bundle); (4) if you need remote embedding/search backends, inspect or modify code first—there are no hidden network endpoints, but adding such features later would require new review.

Like a lobster shell, security has layers — review code before you run it.

latestvk9731cqv9v14hgh2cs7tzqs47s83yd8d

License

MIT-0

Free to use, modify, and redistribute. No attribution required.

Termshttps://spdx.org/licenses/MIT-0.html

CNC Quote System

License

Comments