Nex Skillmon

Name/description (health monitoring, cost tracking, security checks) match the files and behavior: scanner reads SKILL.md files under a skills directory, computes hashes, calls a ClawHub API for updates/flags, and stores local telemetry in ~/.nex-skillmon. Required binaries (python3) and the declared env vars (CLAWHUB_API_URL, SKILLS_BASE_DIR) are appropriate for the stated functionality.

Runtime instructions and CLI commands are focused on discovery, health checks, security scans, and cost reporting. The scanner will read all files under SKILLS_BASE_DIR and compute SHA256 hashes; it also makes outbound HTTP requests to CLAWHUB_API_URL for update/flag checks. These behaviors are expected for a monitoring tool, but users should be aware the skill will read the full contents of skill directories (file hashing) and send skill names to the configured ClawHub endpoint.

No external downloads or package installs are performed. setup.sh initializes a local SQLite DB, creates a ~/.nex-skillmon data directory and logs, and creates a symlink/wrapper in ~/.local/bin (or a Windows batch wrapper). The installer is local and idempotent; no network fetches or archives are pulled during setup.

Only CLAWHUB_API_URL and SKILLS_BASE_DIR are declared as required env vars; these are proportionate to checking a remote skill index and scanning a local skills directory. The skill does read other optional env vars (CURRENCY, LOG_LEVEL) but these are non-sensitive configuration values. The package does not request secret tokens, cloud keys, or unrelated credentials.

The skill stores persistent state under the user's home (~/.nex-skillmon) and creates a user-level symlink/wrapper in ~/.local/bin. always is false. This level of persistence is typical for a CLI monitoring tool; it does not modify other skills or system-wide settings beyond adding a user bin entry.