Conduct thorough company research, tailor applications, identify and engage key contacts, and follow up strategically for targeted job hunting beyond generic...
Security Analysis
high confidenceThe skill's files and runtime instructions are coherent with a job-hunting assistant and do not request unexplained credentials or perform hidden network activity; nothing here appears malicious.
Name, templates, guidance, and the included shell scripts (email-pattern generator and company-research checklist) all align with a job-hunting assistant. There are no unrelated binaries, env vars, or config paths requested.
SKILL.md instructs the agent to perform web searches, LinkedIn research, and multi-channel outreach (LinkedIn, email, Twitter). That is expected for this purpose, but it also points the agent toward 'LinkedIn automation' and use of other skills (browser, bird, gog). Those downstream actions can access external accounts and may violate third-party Terms of Service or privacy expectations if used automatically. Also several templates include an explicit personal name/signature (Fikri Izzuddin / Muchammad Fikri Izzuddin) — likely a leftover that users should replace before sending.
Instruction-only skill with small, readable shell scripts; there is no install spec, no downloads, and nothing will be written to disk by an installer. The included scripts are simple echo/format helpers and do not fetch remote code.
The skill declares no required environment variables or credentials. However, SKILL.md references integrations (browser for LinkedIn, gog for Gmail, bird for Twitter) that, when used, will involve those other skills' credentials — users should be aware the agent may ask to use those capabilities if allowed.
always is false and the skill does not request persistent elevated privileges or attempt to modify other skills. It suggests storing job-hunt data under memory/ paths (memory/job-targets.md, memory/job-templates/) which is normal for a productivity skill; users should confirm where the platform persists that memory.
Guidance
This skill appears coherent and non-malicious, but review these things before installing: - Confirm whether you want the agent to use other skills (browser, Gmail, Twitter); those integrations require access to your accounts and can perform outreach on your behalf. - Replace the example personal names/signatures in templates with your own to avoid accidental leaking of someone else's identity. - Avoid enabling automated LinkedIn or Twitter messaging without understanding platform Terms of Service — automated outreach can lead to account restrictions. - The included scripts are safe helpers (they only print patterns and search suggestions), but check where the platform saves memory/job-targets.md and templates to ensure you’re comfortable with that storage. If you want the agent to actually send messages or interact with sites, explicitly limit or review the permissions and review any prompts that request account access.
Latest Release
v1.0.0
Initial release - aggressive job hunting skill
More by @oyi77
Published by @oyi77 on ClawHub
