Skip to main content

smart-context

Smart Context efficiently extracts relevant code context, reducing token usage by 72% while maintaining high accuracy for code analysis tasks.

Install this skill

or
24/100

Security score

The smart-context skill was audited on Feb 28, 2026 and we found 16 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 204

Template literal with variable interpolation in command context

SourceSKILL.md
204return { error: `Node not found: ${request.target}` };
medium line 346

Template literal with variable interpolation in command context

SourceSKILL.md
346return `- ${node.id} (${node.type})`;
medium line 351

Template literal with variable interpolation in command context

SourceSKILL.md
351return `### ${node.name}\n\`${node.signature}\``;
medium line 353

Template literal with variable interpolation in command context

SourceSKILL.md
353return `### ${node.name} (${node.type})\nPath: ${node.path}:${node.line}`;
medium line 360

Template literal with variable interpolation in command context

SourceSKILL.md
360lines.push(`- Async: ${node.isAsync}`);
medium line 361

Template literal with variable interpolation in command context

SourceSKILL.md
361lines.push(`- Exported: ${node.isExported}`);
medium line 362

Template literal with variable interpolation in command context

SourceSKILL.md
362lines.push(`- Params: ${node.params?.map(p => `${p.name}: ${p.type}`).join(', ')}`);
medium line 363

Template literal with variable interpolation in command context

SourceSKILL.md
363lines.push(`- Returns: ${node.returnType}`);
medium line 373

Template literal with variable interpolation in command context

SourceSKILL.md
373lines.unshift(`/**\n * ${node.docstring}\n */`);
medium line 376

Template literal with variable interpolation in command context

SourceSKILL.md
376lines.push(`- Complexity: ${node.complexity || 'N/A'}`);
medium line 377

Template literal with variable interpolation in command context

SourceSKILL.md
377lines.push(`- LOC: ${node.loc}`);
medium line 380

Template literal with variable interpolation in command context

SourceSKILL.md
380lines.push(`- Calls: ${node.calls.slice(0, 5).join(', ')}${node.calls.length > 5 ? '...' : ''}`);
medium line 383

Template literal with variable interpolation in command context

SourceSKILL.md
383lines.push(`- Called by: ${node.calledBy.slice(0, 5).join(', ')}${node.calledBy.length > 5 ? '...' : ''}`);
medium line 391

Template literal with variable interpolation in command context

SourceSKILL.md
391return `${this.renderLevel3(node)}\n\n\`\`\`typescript\n// Implementation summary (Level 4)\n// Read actual file for full implementation\n\`\`\``;
medium line 396

Template literal with variable interpolation in command context

SourceSKILL.md
396return `${this.renderLevel3(node)}\n\n[Full implementation - Read from: ${node.path}:${node.line}-${node.endLine}]`;
low line 116

Access to .env file

SourceSKILL.md
116const payload = jwt.verify(token, process.env.JWT_SECRET);
Scanned on Feb 28, 2026
View Security Dashboard
Installation guide →
GitHub Stars 22
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
openclawapibackendbackend-developerdata-engineerqa-engineerproduct-managertechnical-pmdevelopmentproduct
mattnigh/skills_collection