ClawHub

Gift Finder

v3.0.1

Reference tool for life — covers intro, quickstart, patterns and more. Quick lookup for Gift Finder concepts, best practices, and implementation patterns.

0· 352·0 current·0 all-time
by@bytesagain1
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill is advertised as a reference/cheatsheet tool and includes only static documentation and a small shell script that emits heredoc text for the documented commands. There are no unrelated environment variables, binaries, or services requested.
Instruction Scope
SKILL.md promises plain-text heredoc output with no network access or credentials; the included scripts implement those heredocs and do not perform I/O, network calls, or read environment variables. Minor documentation inconsistencies exist: the cheatsheet text references a 'troubleshooting' command that is not implemented (the implemented command is 'debugging'), and the SKILL.md version (3.0.1) differs from the script VERSION (3.0.0). These are quality issues but not security concerns.
Install Mechanism
No install specification is provided; this is an instruction-only skill with a bundled script. Nothing is downloaded or written to disk by an installer, so install risk is low (standard caution for executing included scripts applies).
Credentials
The skill declares no required environment variables, credentials, or config paths and the runtime script does not reference any. The 'No API keys or credentials required' claim matches the code.
Persistence & Privilege
always is false and the skill does not request any persistent presence or modify other skills or system configuration. It is user-invocable only and can be invoked autonomously per platform defaults — there are no additional privilege requests.
Assessment
This skill appears to be a simple local reference tool: it contains static documentation and a small shell script that prints help text. It does not request credentials, make network calls, or install software. Before running the script, you can inspect scripts/script.sh (already included) and optionally run it in a restricted/sandbox environment. Note minor documentation mismatches (version string and a 'troubleshooting' vs 'debugging' naming discrepancy) — these are quality issues, not security problems.

Like a lobster shell, security has layers — review code before you run it.

latestvk97bbkbf3x3jk8az5s0qm7rc0583g1bbproductivityvk97dzjeq9hgkpvzq87xwy5zabx82s71m

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments