ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Pocket AI Integration

v1.0.1

Transcribe, index, and semantically search all voice recordings, extracting action items and meeting insights for comprehensive conversation intelligence.

0· 721·0 current·0 all-time
by@asabovetech
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill's purpose (transcribe/index/search Pocket AI recordings) matches the code and SKILL.md: pocket_api.py and search.sh call a remote API (https://public.heypocketai.com). However the registry metadata declares no required credentials or config paths while SKILL.md, README.md, and the code all expect a local API key stored at ~/.config/pocket-ai/api_key. The manifest also references external sites (asabove.tech, github repo) and the API uses heypocket*/pocket-ai domains — inconsistent provenance information.
Instruction Scope
Runtime instructions explicitly tell the agent to read a local file (~/.config/pocket-ai/api_key) and to send search queries to the Pocket AI API. The instructions also recommend posting decisions/action-items into channels (e.g., #operations) and integrating with agent heartbeats and scheduling; those integrations could cause sensitive meeting content to be forwarded to other systems. The skill does not instruct broad system reads beyond the API key file.
Install Mechanism
No install spec is present (instruction + small code files). No external downloads or install scripts are invoked. This is lower-risk from an installation perspective, but included code will run network requests when used.
!
Credentials
The package metadata/registry lists no required env vars, but SKILL.md and the code expect an API key stored in ~/.config/pocket-ai/api_key. That config path requirement was not declared in the registry metadata. The skill will therefore access a local secret file (the API key) — this is expected for the stated purpose, but the omission in the declared requirements is an incoherence you should verify.
Persistence & Privilege
The skill does not request permanent 'always' inclusion, does not modify other skills, and contains no installation that persists beyond copying files. Autonomous invocation is permitted (platform default) but not combined with other high-risk privileges here.
What to consider before installing
Before installing: (1) Verify provenance — confirm the author's repo/homepage and that https://public.heypocketai.com and related domains are legitimate and match the Pocket AI product you expect. (2) Understand and control the API key: the skill reads ~/.config/pocket-ai/api_key (this was not declared in registry metadata) — keep a dedicated, least-privilege key for this integration and inspect file contents. (3) Audit the included code (pocket_api.py and search.sh) yourself — they make HTTP calls and will send transcripts/searches to the remote API. (4) Consider information flow: the docs encourage posting decisions/action-items to channels and integrating with agent heartbeats; ensure those downstream channels/systems are safe for meeting content. (5) If unsure, test in a sandboxed environment or review network traffic (or create a throwaway API key) before connecting sensitive recordings.

Like a lobster shell, security has layers — review code before you run it.

latestvk97d5nfvss15t25ffs78ctqrv5821aye

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments