Safety Report

OS Update Checker

Name: OS Update Checker
Rating: 5 (1 reviews)
Author: pfrederiksen

Check for available OS package updates with per-package changelog summaries and risk classification. Supports apt (Debian/Ubuntu), dnf (Fedora/RHEL), yum (Ce...

38Downloads

0Installs

1Stars

3Versions

Customer Support4,248 Networking & DNS2,429

Security Analysis

high confidence

Clean0.04 risk

The skill's code and instructions are consistent with an OS update-checker: it runs read-only package manager commands, fetches changelogs, and classifies risk; it does not request credentials or install arbitrary software.

Mar 6, 20263 files1 concern

Purpose & Capabilityok

Name/description align with the included script and declared behavior. The code enumerates supported package managers, lists upgradable packages, fetches changelogs, and classifies risk — all coherent with an update-checker.

Instruction Scopenote

SKILL.md and the script stay within a read-only scope: they call package-manager read-only subcommands and parse output. The apt backend can make outbound HTTPS requests when running `apt changelog` (declared in SKILL.md); this is expected but is a privacy/network consideration because package names may be sent to distribution changelog servers.

Install Mechanismok

No install spec; this is an instruction-only skill with a bundled Python script. It does not download or extract remote archives or install additional packages.

Credentialsok

No environment variables, credentials, or config paths are requested. The script only requires a supported package manager on PATH and Python 3.10+.

Persistence & Privilegeok

always is false, the skill does not request permanent presence or modify other skills or system-wide configs; it is read-only and does not write files.

Guidance

This skill appears to be what it says: a read-only OS update checker. Things to consider before installing: (1) apt changelog calls may contact distro changelog servers (outbound HTTPS) and could reveal package names/versions — if you need strict privacy run it in an isolated host or container; (2) it relies on system package manager binaries on PATH, so it will only work where those tools exist; (3) review or run the bundled scripts locally before granting the agent permission to invoke them if you have strict security policies. The code uses subprocess.run with shell=False and name validation, which reduces command-injection risk.

Latest Release

v1.1.0

Cross-platform support: apt, dnf, yum, pacman, zypper, apk, brew. Pluggable backend architecture with per-backend name sanitization. VirusTotal-clean: shell=False, specific exceptions, full type hints and docstrings.

More by @pfrederiksen

Email Intelligence

2 stars

Photo Captions

2 stars

Synology Backup

2 stars

Arccos Golf Performance Analyzer

1 stars

OpenClaw Cost Tracker

1 stars

Shipment Tracker

1 stars

Published by @pfrederiksen on ClawHub