Safety Report

Curl Http

Name: Curl Http
Rating: 5 (3 reviews)
Author: Arnarsson

@Arnarsson

Essential curl commands for HTTP requests, API testing, and file transfers.

3,587Downloads

30Installs

3Stars

1Versions

API Integration4,971 File Management2,100 Networking & DNS1,102 Automated Testing538

Security Analysis

high confidence

Clean0.04 risk

This is an instruction-only curl cheat-sheet that is internally consistent with its stated purpose and does not request extra credentials or installs.

Feb 11, 20261 files1 concern

Purpose & Capabilityok

Name/description present a curl HTTP client guide and the SKILL.md contains curl commands and examples — what it claims to do matches what it instructs. Minor metadata mismatch: SKILL.md metadata lists requires bins:["curl"] while the registry metadata above lists no required binaries.

Instruction Scopenote

The instructions are focused on making HTTP requests and file transfers with curl. They include examples that reference local files (e.g., @data.json, client.key, cookies.txt) and show how to include credentials (basic auth, headers, API keys in URL) and insecure options (-k, API keys in query). These are relevant to curl usage but can encourage insecure practices or cause local file access if the agent executes them — the examples are expected for a curl guide but warrant caution.

Install Mechanismok

No install spec and no code files — lowest-risk instruction-only skill. Nothing will be downloaded or written to disk by installing the skill.

Credentialsok

The skill declares no required environment variables or credentials. The examples show how to supply auth credentials for target services (normal for HTTP client documentation) but there is no request for unrelated secrets.

Persistence & Privilegeok

always:false and normal model invocation settings. The skill can be invoked autonomously (platform default), which means an agent could run curl commands when it decides to use this skill — this is expected for an instruction skill of this type.

Guidance

This skill is essentially a curl command reference and looks coherent. Before using it, note: (1) it contains examples that place credentials on the command line or in URLs and uses -k — these can leak secrets via shell history, process lists, or network logs; avoid those patterns in production. (2) Some examples reference local files (client keys, cookies, @data.json) — if the agent executes commands it may read local files you specify. (3) There's a small metadata inconsistency about declaring the curl binary requirement. If you plan to let the agent run commands, ensure you trust it with network access and do not store secrets in CLI arguments or query strings; prefer protected files, headers, or secure credential stores.

Latest Release

v1.0.0

curl-http 1.0.0 – Initial Release - Provides essential curl command examples for HTTP requests, API testing, and file transfers. - Covers usage for GET, POST, PUT, DELETE, and PATCH requests, authentication methods, custom headers, cookies, proxy, and SSL/TLS options. - Includes examples for file downloads/uploads, response formatting, range requests, and performance testing. - Offers tips for scripting, debugging, and common usage patterns. - Lists helpful curl flags and links to official documentation.

More by @Arnarsson

Docker Essentials

17 stars

Git Essentials

14 stars

Ssh Essentials

8 stars

Ripgrep

0 stars

Fzf Fuzzy Finder

0 stars

Jq Json Processor

0 stars

Published by @Arnarsson on ClawHub