ClawHub

UI/UX Pro Max

v0.1.0

UI/UX design intelligence and implementation guidance for building polished interfaces. Use when the user asks for UI design, UX flows, information architecture, visual style direction, design systems/tokens, component specs, copy/microcopy, accessibility, or to generate/critique/refine frontend UI (HTML/CSS/JS, React, Next.js, Vue, Svelte, Tailwind). Includes workflows for (1) generating new UI layouts and styling, (2) improving existing UI/UX, (3) producing design-system tokens and component guidelines, and (4) turning UX recommendations into concrete code changes.

114· 23.6k·278 current·291 all-time
by@xobi667
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (UI/UX design + implementation guidance) matches the included assets (color palettes, patterns, heuristics) and the presence of a design-system generator script; none of the declared requirements (no env vars, no external binaries) appear out of place.
Instruction Scope
Runtime instructions restrict the agent to reading bundled data files and optionally running a local Python script (scripts/design_system.py). The guidance does not ask for unrelated system files, credentials, or remote endpoints — however, executing bundled scripts grants them arbitrary runtime capability (file I/O, network, subprocess), so running them without code review elevates risk.
Install Mechanism
There is no install spec and no external downloads; all assets are bundled in the skill. That avoids supply-chain download risks. Note: the skill is not purely instruction-only — it includes Python scripts that would be executed from the skill directory rather than installed from a third party.
Credentials
The skill declares no required environment variables, credentials, or config paths, which is proportional for a UI/UX assistant. There are no hidden credential requests in the SKILL.md.
Persistence & Privilege
always:false and default invocation settings are appropriate. The skill does not request permanent platform-wide privilege in metadata. The main persistence concern would be if the bundled scripts modify system state, but that behavior is not declared — you must inspect the scripts to confirm.
What to consider before installing
This skill appears to be what it claims (UI/UX guidance with local data), but exercise caution before running any bundled scripts. Specifically: - The SKILL.md explicitly suggests running python3 skills/ui-ux-pro-max/scripts/design_system.py — executing that will run code included in the skill with whatever privileges your agent/workspace has. Review scripts/core.py, scripts/design_system.py, and scripts/search.py before running. - Look for network calls (requests, urllib, socket), subprocess usage (subprocess, os.system, sh), file writes/reads outside the skill folder, and any hardcoded endpoints or credentials. If you are not comfortable reading the Python, ask the publisher to summarize what the scripts do or run them in an isolated sandbox/container with no network and limited filesystem access. - Because the skill source and homepage are unknown, prefer: (1) manual code review, (2) running the scripts offline in a restricted environment, or (3) using the skill only for its human-readable assets (CSV/README) and not executing the scripts. - If you decide to run the script, run it with a non-privileged user account, with network disabled, and monitor for unexpected connections or filesystem changes. If you want, I can scan the actual Python source (paste it here) for suspicious constructs and point to specific lines to review.

Like a lobster shell, security has layers — review code before you run it.

latestvk970krg0ccq1wzwgnb3yx967rd802vyy

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments