← Back to Skills Marketplace
Snapbyte Digest API
by
Onat Yiğit Mercan
· GitHub ↗
· v1.0.0
631
Downloads
2
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install snapbyte-digest-api
Description
Fetch personalized developer news digests from Snapbyte External API with API-key auth. Use for Hacker News digest, Reddit digest, Lobsters digest, and DEV.t...
Usage Guidance
This skill appears to do what it claims: it uses a single Snapbyte API key to fetch digests and format them. Before installing: (1) Confirm you trust api.snapbyte.dev and the Snapbyte service; the skill will send your SNAPBYTE_API_KEY to the configured base URL. (2) Be cautious with the undocumented SNAPBYTE_BASE_URL environment variable — if you set it to a non-official URL you could expose your API key. (3) The metadata lists 'curl' though the script uses only python3; this is harmless but inconsistent. (4) If you enable scheduled/automated runs (cron or agent automation), review which channels or recipients would receive digest content to avoid accidentally publishing sensitive items. If you need stronger assurance, ask the publisher to document SNAPBYTE_BASE_URL and remove unused binary requirements (curl).
Capability Analysis
Type: OpenClaw Skill
Name: snapbyte-digest-api
Version: 1.0.0
The skill bundle is designed to interact with the Snapbyte API to fetch developer news digests. The `SKILL.md` and `references/quickstart.md` files contain clear, benign instructions for the AI agent and user, without any evidence of prompt injection attempts to subvert the agent's behavior. The `scripts/snapbyte_digest.py` script correctly uses `SNAPBYTE_API_KEY` for authentication and `urllib.request` for network calls to `https://api.snapbyte.dev` (or an optionally overridden `SNAPBYTE_BASE_URL`). There is no evidence of data exfiltration, malicious execution, persistence mechanisms, or obfuscation. The script's functionality is aligned with its stated purpose.
Capability Assessment
Purpose & Capability
Name/description, required binaries (python3) and the included helper script align with fetching digests from Snapbyte. One minor mismatch: the metadata/README list 'curl' as a required binary but the bundled script never invokes curl; curl appears unnecessary for the stated purpose.
Instruction Scope
SKILL.md documents how to call the Snapbyte API and the included python helper follows that, but the script reads an additional environment variable (SNAPBYTE_BASE_URL) to override the base URL. SNAPBYTE_BASE_URL is not declared in requires.env or documented in SKILL.md; if set to an attacker-controlled URL it could cause the skill to send the SNAPBYTE_API_KEY to an unexpected endpoint. Otherwise the script only issues GET requests to the API and formats output.
Install Mechanism
This is an instruction-only skill with no install spec and one small Python helper script. No downloads or archive extraction are performed by the skill itself. The quickstart suggests installing an external CLI (clawhub) but that is user guidance, not an install step performed by the skill.
Credentials
The skill requests a single API credential (SNAPBYTE_API_KEY) which is proportional to its function. Minor issues: SNAPBYTE_BASE_URL exists as an optional override in the script but is not declared in requires.env or documented; that optional env var could be misused if set to a malicious endpoint. No other unrelated credentials or config paths are requested.
Persistence & Privilege
The skill is not 'always' enabled and does not request permanent system-level presence. It does not modify other skills or system-wide settings. Autonomous invocation is allowed (the default), which is normal for skills; combine this with your agent's normal autonomy policies if you plan to schedule or auto-run it.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install snapbyte-digest-api - After installation, invoke the skill by name or use
/snapbyte-digest-api - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial public release of Snapbyte Digest API skill for OpenClaw.
- Add API-key authenticated digest access via SNAPBYTE_API_KEY
- Support latest, history, digest, and digest item retrieval commands
- Add quickstart docs and daily cron automation examples
If validation still complains:
- Make sure you uploaded the skill folder itself, not openclaw/ root.
- Confirm the file is named exactly SKILL.md (uppercase).
- Recheck display name is not empty.
Metadata
Frequently Asked Questions
What is Snapbyte Digest API?
Fetch personalized developer news digests from Snapbyte External API with API-key auth. Use for Hacker News digest, Reddit digest, Lobsters digest, and DEV.t... It is an AI Agent Skill for Claude Code / OpenClaw, with 631 downloads so far.
How do I install Snapbyte Digest API?
Run "/install snapbyte-digest-api" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Snapbyte Digest API free?
Yes, Snapbyte Digest API is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Snapbyte Digest API support?
Snapbyte Digest API is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Snapbyte Digest API?
It is built and maintained by Onat Yiğit Mercan (@onatm); the current version is v1.0.0.
More Skills