Summary
This is the workflow you want before installing anything from ClawHub that you didn't write yourself. It walks you through a mandatory six-step vetting process: checking author reputation, reviewing all code for exfiltration patterns and suspicious eval calls, validating permission scope, spotting unusual activity bursts, checking community sentiment, and sandboxing the install. The output is a structured report with red flags, a confidence score, and a clear go/no-go recommendation. Honestly, the fact that this needs to exist tells you everything about the current state of third-party skill ecosystems. Use it whenever you're evaluating a skill or when someone asks about safe installation practices.
Install to Claude Code
npx -y skills add hugomrtz/skill-vetting-clawhub --skill clawhub-skill-vetting --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
