reply-coach

PassAudited by ClawScan on May 10, 2026.

Overview

This skill does what it says—reads the current clipboard to help draft chat replies—but users should avoid copying sensitive non-chat data before using it.

Before installing or using this skill, be aware that it reads and outputs the current clipboard text for the agent to analyze. This is expected for its chat-reply purpose, but you should copy only the intended conversation and avoid using it when sensitive unrelated data is on the clipboard.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Low

#ASI02: Tool Misuse and Exploitation

What this means

The skill can read whatever text is currently on the clipboard when invoked.

Why it was flagged

The script invokes a shell command, but the command is fixed to pbpaste and is directly tied to the disclosed clipboard-reading purpose.

Skill content

return execSync(cmd, { encoding: "utf8" }).trim(); ... const text = safeRun("pbpaste");

Recommendation

Use it only after copying the intended chat text, and avoid invoking it when passwords, tokens, or unrelated private text are on the clipboard.

Low

#ASI06: Memory and Context Poisoning

What this means

Private messages copied to the clipboard may be shared with the agent for analysis.

Why it was flagged

The full clipboard text is printed for the agent to analyze, so copied private chat or accidental sensitive clipboard content may enter the conversation context.

Skill content

console.log("===CHAT_TEXT_BEGIN===");
console.log(text);
console.log("===CHAT_TEXT_END===");

Recommendation

Review what is on the clipboard before use and copy only the relevant conversation excerpt.