ClawHub

Daily Learning Summary

v1.0.0

Generates a daily structured summary of AI learning activities by integrating InStreet, ClawHub discoveries, skill usage, and lessons learned into dated mark...

0· 67·0 current·0 all-time
by@yu441374-oss
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The SKILL.md description says it aggregates InStreet, ClawHub, heartbeat and skill-usage data into memory/learning/YYYY-MM-DD.md; the Python script reads the same memory files and writes the same output. No unrelated credentials, binaries, or external services are requested.
Instruction Scope
Runtime instructions and the main script stay within scope (reading memory/instreet_activity.log, memory/clawhub_discoveries.md, memory/heartbeat-state.json and writing memory/learning/*.md). validate.py invokes the script via subprocess and calls the system 'date' command (POSIX-dependent), and both scripts use path-parent indexing to locate the workspace which is brittle and could mis-locate files if directory layout differs. There are no network calls or external endpoints in the code.
Install Mechanism
No install spec; this is an instruction-only skill with bundled Python scripts. Only standard library modules are used, and no downloads or archive extraction occur.
Credentials
The skill declares no required environment variables or credentials. The code optionally reads OPENCLAW_WORKSPACE to override workspace detection (reasonable). No secrets are requested or needed.
Persistence & Privilege
always is false and the skill does not modify other skills or global agent configuration. It writes only to workspace memory/learning and reads workspace memory files — consistent with stated behavior.
Assessment
This skill appears coherent and limited to your workspace memory files. Before installing: (1) inspect the memory files it will read to ensure they contain no secrets you don't want aggregated, (2) be aware validate.py uses the system 'date' command (may fail on non-POSIX systems) and both scripts rely on fragile parent-path indexing to find the workspace, so test in a safe environment first, and (3) run the scripts locally to confirm they write only where you expect (memory/learning/*.md). If you need cross-platform validation, update validate.py to avoid shell 'date' and make workspace detection more robust.

Like a lobster shell, security has layers — review code before you run it.

automationvk976jgswg6baqxbfsgrj04yzm583gbhvlatestvk976jgswg6baqxbfsgrj04yzm583gbhvlearningvk976jgswg6baqxbfsgrj04yzm583gbhvreportingvk976jgswg6baqxbfsgrj04yzm583gbhv

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments