ClawHub

Beta

v1.0.0

Beta coefficient reference — CAPM, systematic risk, portfolio sensitivity, regression analysis. Use when measuring stock volatility relative to the market or...

0· 86·0 current·0 all-time
bybytesagain4@xueyetianya
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name and description (beta/CAPM/reference) align with the included functionality. The skill only provides explanatory commands (intro, capm, calculate, etc.) implemented in a bundled scripts/script.sh. One minor inconsistency: SKILL.md documents a BETA_DIR configuration variable, but the bundled script does not appear to read or use any environment variables.
Instruction Scope
Runtime instructions tell the agent to run the local scripts/script.sh with fixed subcommands. The script content is static text emitted via heredocs (no network calls, no reading of arbitrary system files, no credential access). There is a small manifest anomaly: the provided scripts/script.sh content in the listing appears truncated at the end — you should verify the file is complete before executing, but the visible content shows only read-only documentation output.
Install Mechanism
No install spec is present (instruction-only plus a local script). Nothing is downloaded or written to disk by an installer step; risk from installation is minimal.
Credentials
The skill declares no required environment variables, credentials, or config paths. The SKILL.md documents an optional BETA_DIR setting (default ~/.beta/) but the script does not use environment variables — the requested privilege level is proportionate to the purpose.
Persistence & Privilege
always is false and model invocation is normal/default. The skill does not request persistent system presence or modify other skills or agent-wide settings.
Assessment
This skill appears coherent and low-risk: it runs a local shell script that prints finance reference material, requests no secrets, and has no installer or network activity. Before installing or running it, (1) verify the scripts/script.sh file is complete and unmodified (the manifest you provided shows a truncated tail), (2) inspect the script to confirm it contains only harmless output (no curl, wget, exec of user-provided input, file deletions, or secret access), and (3) run it in a restricted environment if you are cautious. If you expect the skill to persist data in BETA_DIR, note that the current script does not use that variable — confirm intended behavior with the author.

Like a lobster shell, security has layers — review code before you run it.

latestvk975zzdz8tzjcapszpd3kamkg583ah0a

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments