Automated Soap Note Generator
v0.1.0Transform unstructured clinical input (dictation, transcripts, or rough notes) into standardized SOAP (Subjective, Objective, Assessment, Plan) medical docum...
⭐ 0· 104·0 current·0 all-time
byAIpoch@aipoch-ai
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The name/description (Automated SOAP Note Generator) matches the SKILL.md, reference docs, sample notes, and the included Python code: rule-based NLP, entity extraction, section classification, and markdown output. There are no unexpected dependencies or credentials requested in the manifest that would be unrelated to clinical note generation.
Instruction Scope
Runtime instructions and examples focus on processing text/transcript input and producing SOAP-formatted output; they explicitly require de-identification of PHI for testing and demand physician review. Nothing in the SKILL.md instructs reading unrelated system files or environment secrets. NOTE: SKILL.md lists allowed-tools [Read, Write, Bash, Edit] — Bash access isn't required by the provided examples and expands the agent's action surface; consider restricting allowed-tools to Read/Write/Edit unless shell use is necessary.
Install Mechanism
No install spec is present (instruction-only skill) and the requirements.txt only lists 'dataclasses' and 'enum' (both are standard/stdlib in modern Python or very lightweight), so there is no high-risk external download or installer. No archives or remote URLs are used by the manifest.
Credentials
The skill does not request environment variables, credentials, or config paths. The code and docs operate on provided input_text/transcript_path and produce output files; this is proportionate to the stated purpose. The SKILL.md warns about PHI handling, which is appropriate.
Persistence & Privilege
Skill flags are defaults (always:false, model invocation enabled). The skill does not request permanent platform privileges and contains no install step that would persist code beyond the skill bundle. No evidence it modifies other skills or system-wide configs.
Assessment
This skill appears coherent for generating draft SOAP notes, but before installing or running it: 1) Verify the full scripts/main.py (the supplied snippet was truncated) to ensure there are no hidden network calls, telemetry, or dynamic code execution (requests, urllib, socket, subprocess, eval, exec). 2) Test the code in an isolated environment with de-identified sample data. 3) If you will process PHI in production, confirm institutional HIPAA policies, encryption at rest/in transit, and audit logging. 4) Consider restricting allowed-tools (remove Bash unless required) to reduce the agent's ability to run arbitrary shell commands. 5) Ensure physician review workflows are enforced before any output is entered into EHRs. If you want, I can scan the full main.py for network/IO/exec patterns or suggest a minimal runtime sandbox policy to safely evaluate the skill.Like a lobster shell, security has layers — review code before you run it.
latestvk97cp6v15ktmh1knekqzf44wz18354xb
License
MIT-0
Free to use, modify, and redistribute. No attribution required.