Skillv1.0.1

ClawScan security

Obsidian Helper · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 15, 2026, 8:06 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's files and instructions mostly match an Obsidian CLI helper, but there are multiple mismatches and a buggy/missing install artifact that make it incoherent and risky to run as-is.
Guidance: Do not run the installer yet. The package is inconsistent: SKILL.md expects an 'obsidian' helper script and the OBSIDIAN_VAULT env var, but the manifest/registry metadata doesn't list those and the included install.sh appears to reference a missing/incorrect path (scripts/obsidian). Ask the publisher for the missing 'scripts/obsidian' file or a corrected installer, and review that script's contents before running anything. If you must test, inspect the install.sh and the helper script manually and run steps by hand (copying a vetted helper to ~/bin and adding only the PATH line you approve) rather than executing the provided installer blind. If the publisher cannot explain the metadata mismatches and provide the missing file, treat the skill as untrusted.

Review Dimensions

Purpose & Capability: concernSKILL.md describes a simple CLI wrapper for Obsidian and declares it needs an OBSIDIAN_VAULT env var and an 'obsidian' script/binary. Registry metadata (provided above) lists no required env or binaries — the two manifests contradict each other. That inconsistency is unexplained and reduces trust.
Instruction Scope: noteRuntime instructions are narrowly scoped to listing/searching/creating/editing markdown files in a vault and configuring OBSIDIAN_VAULT. The install step edits the user's ~/.bashrc to add ~/bin to PATH, which is expected for a user-level CLI install. The instructions do not attempt to read or exfiltrate unrelated credentials or system config.
Install Mechanism: concernAn install script is included, but it appears buggy: it attempts to copy a scripts/obsidian file from "$SCRIPT_DIR/scripts/obsidian" even though the manifest does not include scripts/obsidian, and the path looks incorrect (would result in scripts/scripts/obsidian). There is no network download, but the missing/incorrect file copy means the installer will fail or behave unexpectedly.
Credentials: noteThe only runtime environment variable the skill claims to need (OBSIDIAN_VAULT) is proportionate to its purpose. However, the registry metadata claims no required env vars while SKILL.md declares OBSIDIAN_VAULT as required — this metadata mismatch is suspicious and should be resolved.
Persistence & Privilege: noteThe skill does not request always:true and is user-invocable only. The install script modifies ~/.bashrc (adds ~/bin to PATH), which is a normal user-level change for a CLI tool but is a persistent change the user should be aware of.