SR
SKILLRADAR
AI Security • Benchmarking • Index
Menu
Trust Report v1

aade-api-monitor

Real-time monitoring of Greek AADE tax authority systems — tracks deadlines, rate changes, and compliance updates. File-based, OpenClaw-native.

Overall
72
Trust
50
Utility
88
Momentum
95

Install caution

High-risk behavior present

Risk: High

Source: OpenClaw Master Skills

Path: skills/aade-api-monitor/SKILL.md

Review flags: credential or secret references, network access or external URLs, package installation commands, shell command snippets. These are review signals, not definitive security judgments; inspect before installing.

Required permissions

  • Environment variables / secrets
  • Shell commands
  • Network/API usage

Permissions are inferred from SKILL.md text only. They are review prompts, not guarantees about runtime behavior.

Risk flags explained

credential_or_secret_referencehigh

Mentions tokens, API keys, passwords, or private-key style environment variables.

network_accessmedium

Mentions external URLs, network APIs, downloads, or HTTP client usage.

package_installmedium

Mentions package installation or dependency-fetching commands.

shell_commandmedium

Contains shell command snippets. Review commands before copy/paste or agent execution.

Score explanation

Trust

  • Trust starts at 90 before review-signal penalties and metadata bonuses.
  • Risk-signal penalty: -50 from 4 detected flag(s).
  • Metadata bonus: +10 from author/version/description fields.

Utility

  • Utility starts at 55 and rewards clear descriptions, runnable examples, and explicit setup needs.
  • Description present: yes.
  • Command examples detected: 25.
  • Environment variables detected: 2.

Momentum

  • Momentum starts at 45 and uses public repo activity signals.
  • Recent commit activity: latest repo update was 6 day(s) ago.
  • Recent commit volume: 6 commit(s) in the lookback window (+18).
  • Source has strong public adoption: 2049 stars.
  • Fork activity suggests reuse: 309 forks.

Overall

  • Overall score weights trust 45%, utility 35%, and momentum 20%.

Detected signals

Env vars

  • AADE_PASSWORD
  • API

Commands

  • openclaw aade backup-data --critical-cache --configuration --logs
  • openclaw aade cache-optimize --cleanup-old --defragment --performance-tune
  • openclaw aade calendar-update --sync-changes --notify-affected-clients
  • openclaw aade check-updates --since "24 hours" --urgent-only
  • openclaw aade classify-updates --tax-changes --deadline-changes --system-updates
  • openclaw aade client-notifications --deadline-changes --rate-updates --professional-tone
  • openclaw aade compliance-dashboard --current-status --upcoming-deadlines --action-items
  • openclaw aade data-validation --accuracy-check --cross-reference --anomaly-detection
  • openclaw aade deadline-changes --since yesterday --client-impact-analysis
  • openclaw aade diagnostics --connection-test --parsing-test --alert-test
  • openclaw aade download-announcements --date today --all-categories
  • openclaw aade export-data --format json --destination /data/dashboard/state/

URLs

  • https://github.com/satoshistackalotto/openclaw-greek-accounting
  • https://mydatapi.aade.gr
  • https://www.aade.gr
  • https://www.aade.gr/deltia-typou
  • https://www.aade.gr/nomothesia
  • https://www1.aade.gr/taxisnet

Provenance & evidence

SkillRadar makes each review traceable back to the exact source path, source blob SHA, scanner version, and text-only policy that produced the report.

source
github.com/LeoYeAI/openclaw-master-skills@main
path
skills/aade-api-monitor/SKILL.md
source blob SHA
7aaf4e44509088f8bd2a8ba54e64d42d78872251
scanner version
0.3.0
security model
text_only_no_execute_no_install_no_secrets
scan policy
Fetched and scored as text only; no install, no execution, no runtime loading.

Evidence snippets

credential_or_secret_reference

…s\": {\"bins\": [\"jq\", \"curl\"], \"env\": [\"OPENCLAW_DATA_DIR\", \"AADE_USERNAME\", \"AADE_PASSWORD\"]}, \"optional_env\": {\"SLACK_WEBHOOK_URL\": \"Webhook URL for urgent AADE change alert…

package_install

…NAME="your-aade-username" export AADE_PASSWORD="your-aade-password" which jq curl || sudo apt install jq curl ``` AADE credentials are used for authenticated read-only checks of announcement…

network_access

…dlines, rate changes, and compliance updates. File-based, OpenClaw-native.", "homepage": "https://github.com/satoshistackalotto/openclaw-greek-accounting", "metadata": "{\"openclaw\": {\"r…

shell_command

…g capabilities, delivering real-time alerts for Greek tax compliance changes. ## Setup ```bash export OPENCLAW_DATA_DIR="/data" export AADE_USERNAME="your-aade-username" export AADE_PA…

Watch this skill

Get alerted when this skill adds credential requirements, shell commands, external domains, remote installer patterns, or risk-level changes.

Join watchlist beta

Methodology note

SkillRadar scans SKILL.md as hostile text only. It does not execute commands, install packages, or load third-party skills.

View source SKILL.mdBack to changesView sources