Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Fiscal
v0.1.3Act as a personal accountant using the fscl (fiscal) CLI for Actual Budget. Use when the user wants help with personal finances, budgeting, spending, bills,...
⭐ 0· 749·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description claim (act as a personal accountant using the fscl CLI for Actual Budget) matches what the skill actually does: the SKILL.md is a detailed operator guide for translating user intent into fscl commands, drafts/apply flows, imports, rules, and queries. There are no unrelated binaries, services, or extraneous environment variables requested.
Instruction Scope
The instructions explicitly tell the agent to run fscl commands (e.g., `fscl status`, `transactions import`, `rules run`) and to follow a draft→edit→apply workflow. They also instruct the agent to request the server password from the user and run `fscl login ... --password <pw>` when commands return `not-logged-in`. This is coherent for a CLI-based budget skill, but it means the agent will handle authentication secrets and will execute commands that can modify your local budget data; the agent is also instructed not to show raw UUIDs to users.
Install Mechanism
There is no install spec and no code files — low filesystem footprint. Risk is limited to whatever the preinstalled `fscl` binary and user's budget files permit. The skill does reference the `npx skills add fiscal-sh/fscl` prompt in upstream tooling, but it does not perform any downloads itself.
Credentials
The skill declares no required environment variables or credentials, which is reasonable for an instruction-only wrapper. However, the command reference shows that fscl resolves `--server-url` from an env var (FISCAL_SERVER_URL) and from `~/.config/fiscal/config.json`, and authentication relies on a session token stored in fscl config. The SKILL.md does not declare these as required, but the agent will implicitly read/use them via the fscl binary. Also, the guidance to pass `--password` on the command line may expose the password in process listings — the user should be aware and may prefer to authenticate interactively or use stored tokens instead.
Persistence & Privilege
always is false and the skill does not request persistent platform privileges. It does not modify other skills or system-wide agent settings. Autonomous invocation (disable-model-invocation=false) is the platform default; combined with this skill's ability to run fscl, an agent could autonomously make changes to your budget if allowed to run — the user should control when the skill is invoked.
Assessment
This skill is an instruction-only wrapper for the fscl CLI and appears to do what it says. Before installing or allowing it to run autonomously: 1) Make sure you have the official fscl binary you trust installed locally (the skill expects to call it). 2) Understand the skill will read your fscl config (~/.config/fiscal/config.json) and may use FISCAL_SERVER_URL if set — it can therefore access your budget data and session token. 3) Be cautious about entering server passwords directly into commands (the SKILL.md suggests `--password <pw>`, which can be exposed in process lists); prefer interactive login or stored tokens where possible. 4) Backup your budget or work on a test copy before allowing bulk apply/rules runs, since the agent will run write operations (draft→apply, imports, rules run) that modify your data. 5) If you plan to allow autonomous agent invocation, limit the agent's scope or require explicit user confirmation before any fscl apply/sync/login steps. Overall the skill is coherent, but it legitimately needs local fscl access and potentially a server password — only proceed if you trust the environment and the agent to operate on your financial data.Like a lobster shell, security has layers — review code before you run it.
latestvk97a6kxc017tfrkeqr9heqkt5d81r8y8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.