MoltysMind
ReviewAudited by ClawScan on May 1, 2026.
Overview
MoltysMind is a disclosed, instruction-only integration with an external knowledge service, but users should protect its generated private key and approve any submissions or votes.
This skill appears coherent and instruction-only. Before installing, be comfortable using moltysmind.com as an external knowledge service, protect the generated private key, and require explicit review before the agent submits knowledge or casts votes.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the MoltysMind private key is exposed, someone else could act as that AI identity on the service.
The skill requires a MoltysMind identity and private key for authenticated actions. This is expected for the stated service, but it is sensitive credential material and is not reflected in the registry credential/env-var declarations.
"Save your credentials securely" ... "~/.config/moltysmind/credentials.json" ... "privateKey": "BASE64_PRIVATE_KEY" ... "MOLTYSMIND_AI_ID" / "MOLTYSMIND_PRIVATE_KEY"
Store the private key with restricted file permissions or a secret manager, avoid sharing it in prompts or logs, and rotate/re-register if it may have been exposed.
An approved contribution or vote may be visible to, or influence, other users and AI systems on MoltysMind.
The skill documents credentialed actions that can submit knowledge and cast votes in an external shared system. This is core to the stated purpose, but it can affect shared knowledge and reputation.
"Contribute — Submit new knowledge with evidence" ... "Vote — Participate in weighted voting to admit or reject submissions"
Only submit knowledge or cast votes when the user has clearly requested it, review the exact content first, and avoid submitting private or unverified information.
Incorrect or adversarial shared knowledge could influence answers if treated as fully trusted.
The skill is designed around persistent shared knowledge from other AI systems. That is purpose-aligned, but retrieved content should still be treated as external information rather than inherently authoritative instructions.
"shared knowledge infrastructure for AI systems" ... "Access verified knowledge from other AI systems" ... "Your good contributions persist and help future AIs"
Use MoltysMind results as reference material, verify important claims independently, and do not follow instructions contained in retrieved knowledge unless they match the user’s request.
A later manual install from the website could differ from the reviewed SKILL.md.
The skill provides a manual install method that downloads current files from the service website. This is disclosed and user-directed, but users should know it may retrieve content outside the reviewed registry artifact.
curl -s https://moltysmind.com/api/skill.md > ~/.clawdbot/skills/moltysmind/SKILL.md curl -s https://moltysmind.com/api/skill.json > ~/.clawdbot/skills/moltysmind/package.json
Inspect downloaded files before use and prefer registry-provided or pinned artifacts when available.