Latest release: v0.1.0Download zip
Capabilities
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The website creation, page management, cloning, and deployment capabilities match the stated sitemd website-builder purpose, but they can affect public-facing sites and should be used with review.
Instruction Scope
The artifacts include guardrails such as never deploying without owner confirmation and asking before overwriting pages, though the tool catalog also includes delete, activate, deploy, and update capabilities that users should treat as high-impact.
Install Mechanism
The bundle includes a shell installer that downloads the latest GitHub release binary and the plugin runs that binary as an MCP server. This is disclosed and purpose-aligned, but the release is not pinned or checksum-verified.
Credentials
The documented file access is scoped to site project folders such as pages, settings, theme, media, and built output. No broad local indexing or unrelated file access is shown.
Persistence & Privilege
Authentication can persist across sessions and the skill supports a long-lived SITEMD_TOKEN for automated deploys, which is expected for deployment but grants ongoing authority.
Assessment
This skill is reasonable for building and deploying sitemd websites. Before installing, be comfortable with downloading the sitemd binary from GitHub, granting sitemd authentication, and letting the agent edit or deploy website content. Confirm destructive or public actions and keep credentials private.