Interview
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This interview-prep skill appears benign, but it stores personal prep notes locally and advertises some helper workflows that are not included in the package.
This skill looks safe for interview preparation if you are comfortable saving notes locally. Review the local memory folder for sensitive career details, delete it when done, and verify any missing scripts before using the advertised mock interview, salary, or follow-up workflows.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Your interview stories and preparation notes can remain on disk after use.
The script stores user-provided interview stories persistently in local JSON files. This is disclosed and purpose-aligned, but the data may include sensitive career history or employer details.
INTERVIEW_DIR = os.path.expanduser("~/.openclaw/workspace/memory/interview") ... json.dump(data, f, indent=2)Avoid entering unnecessary confidential details and delete the local interview memory folder when you no longer need it.
Some advertised workflows may fail or may require files that were not available for review.
SKILL.md advertises helper scripts and reference modules that are not included in the provided file manifest, which contains only SKILL.md, scripts/build_story.py, and scripts/research_company.py.
`mock_interview.py` | Run practice interview ... `prep_salary.py` | Prepare salary strategy ... `draft_followup.py` | Draft follow-up messages
Use the included research and story scripts as reviewed, and verify any missing helper files before relying on those workflows.