Monitor Tasks
ReviewAudited by ClawScan on May 10, 2026.
Overview
Mostly a normal OpenAnt monitoring helper, but it grants broad authenticated CLI access and allows some account-state changes without clear user confirmation.
Review before installing. It is useful for OpenAnt monitoring, but you should be comfortable with the agent using your authenticated OpenAnt CLI session, viewing wallet balance and task data, and potentially changing notification/watch state. Safer versions would pin the CLI package, narrow wallet permissions to balance only, and ask before marking notifications read or subscribing to task watches.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could mark notifications as read, subscribe to task notifications, or invoke broader wallet-related CLI subcommands if the provider CLI supports them, without the user reviewing the action first.
The allowed command patterns cover whole OpenAnt command families, including wallet, notifications, and watch, while the instructions remove confirmation. The same artifact documents notification read-all and task watching, which can change account state rather than only read data.
allowed-tools: ["Bash(npx @openant-ai/cli@latest notifications*)", "Bash(npx @openant-ai/cli@latest watch *)", "Bash(npx @openant-ai/cli@latest wallet *)"] ... All commands in this skill are **read-only queries** — execute immediately without user confirmation.
Narrow the allowed tools to the exact read-only commands needed, such as notification list/unread, task list/get/escrow, stats, and wallet balance. Require explicit user confirmation for read-all, watch/subscribe, and any wallet command beyond balance.
The agent can view private OpenAnt account status and balance information through the logged-in CLI session.
The skill uses the user's authenticated OpenAnt identity to access personal task, notification, and wallet-balance information. That is expected for this integration, but it is account-specific access users should notice.
If not authenticated, refer to the `authenticate-openant` skill. ... Uses the authenticated `--mine` flag ... npx @openant-ai/cli@latest wallet balance --json
Use only with an OpenAnt account you intend the agent to monitor, and avoid invoking it in contexts where task or wallet details should remain private.
A future CLI package update could change what the commands do without this skill artifact changing.
The skill executes the latest npm-published CLI at runtime rather than a pinned reviewed version. This is common for CLI integrations, but it means behavior can change when the package updates.
Use the `npx @openant-ai/cli@latest` CLI
Prefer pinning a known CLI version or reviewing the OpenAnt CLI package provenance before use.