ClawHub

Web Check

v2.0.2

Reference tool for devtools — covers intro, quickstart, patterns and more. Quick lookup for Web Check concepts, best practices, and implementation patterns.

0· 104·0 current·0 all-time
bybytesagain4@xueyetianya
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (Web Check reference for devtools) matches the included assets: SKILL.md documents command names and the bundled scripts output static reference text for those commands. There are no unrelated environment variables, binaries, or external services requested.
Instruction Scope
The runtime instructions and the script only produce heredoc text for each command. They do not read unspecified files, do not access environment variables, and do not make network calls or export data to external endpoints. SKILL.md's claim of 'No API keys or credentials required' is consistent with the script.
Install Mechanism
There is no install spec (instruction-only), and the single included script is a plain shell script. Nothing is downloaded or extracted from external URLs during install.
Credentials
The skill declares no required env vars or credentials and the script does not read any environment variables or config paths beyond local execution. No secrets are requested or used.
Persistence & Privilege
always is false (not force-included). The skill does not attempt to modify other skills or agent configuration and does not request permanent presence or elevated privileges.
Assessment
This skill appears low-risk: it only prints built-in reference text and asks for no credentials or network access. If you plan to install or run it, you can verify safety by quickly inspecting the bundled script (scripts/script.sh) — it's readable and contains only static heredocs and a simple command dispatch. Note the version string in the script (VERSION="2.0.0") differs from the declared package version (2.0.2); this is likely a harmless metadata mismatch but worth noting. As a general precaution, run untrusted scripts in a restricted environment or sandbox, and confirm you trust the author/source before granting any broader permissions to agents.

Like a lobster shell, security has layers — review code before you run it.

latestvk978fbf0kzse0mqmkfhw0dj13h83g33k

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments