ClawHub

Meeting Minutes Task Extractor

v1.0.0

Free basic version that extracts actionable tasks from meeting minutes. Reserves premium upgrade hooks for deeper action decomposition and project tracker ex...

0· 204·0 current·0 all-time
by安东子@wingogx
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the included code: the Python script extracts tasks from meeting notes and exposes a free/premium UX. There are no unrelated required binaries, credentials, or config paths.
Instruction Scope
SKILL.md instructs running the included script and tests only. The runtime code reads an optional input file or JSON and returns results; it does not access arbitrary system files. It does construct a payment_url from optional SKILLPAY_* env vars and returns it in the 'upgrade' payload — this is expected for a premium-upgrade hook but means an environment-controlled URL (and user_id query param) may appear in outputs.
Install Mechanism
No install spec and no downloads — instruction-only with included scripts. Nothing is written to disk beyond running the provided scripts, so install risk is low.
Credentials
No required environment variables are declared. The code optionally reads SKILLPAY_PAYMENT_URL_TEMPLATE and SKILLPAY_TOPUP_BASE_URL to build a payment URL; references mention SKILLPAY_API_KEY for a separate billing contract, but that key is not used by the script. Optional env vars are proportionate to the declared premium upgrade behavior, but if set they influence output.
Persistence & Privilege
always:false and no persistent/system-wide changes. The skill does not modify other skills or request permanent presence. Autonomous invocation is allowed (default) but is not combined with any other red flags.
Assessment
This skill appears to do what it says: extract up to 5 actionable tasks from meeting notes. Before installing or running it, consider: 1) The script will include an 'upgrade.payment_url' in its output if SKILLPAY_* environment vars are set — avoid pointing those vars to untrusted domains and avoid exposing sensitive user_id values in query strings. 2) The references file documents a billing API and mentions keeping API keys in environment variables, but the shipped script does not call any billing endpoint or require an API key. 3) Run the provided unit tests locally (python3 -m unittest ...) to confirm behavior in your environment. If you plan to set up the premium/payment hooks, review any target endpoint and do not store secret keys in code or logs.

Like a lobster shell, security has layers — review code before you run it.

freevk97ehz8q93hx4gb47pabctnhzx82d7e8latestvk97ehz8q93hx4gb47pabctnhzx82d7e8meetingvk97ehz8q93hx4gb47pabctnhzx82d7e8productivityvk97ehz8q93hx4gb47pabctnhzx82d7e8

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments