ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Read AI

v1.0.0

Fetch and manage Read AI meeting data - summaries, transcripts, action items, and engagement metrics. Use when the user asks about meetings, meeting notes, m...

0· 41·0 current·0 all-time
byBrandon Stewart@brandons7
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the included client, search, lifecycle pull, and webhook receiver scripts; requested local API key file and local storage under ~/.readai are appropriate for a meeting ingest/search tool. Referencing Limitless (pendant) and Read AI APIs is consistent with the skill purpose.
Instruction Scope
Runtime instructions tell the agent to read an API key from ~/.config/readai/api-key, run the included Python scripts, and (optionally) run a webhook receiver. The scripts only access meeting data, local files under ~/.readai, and the Read AI / Limitless APIs. Minor scope notes: limitless_pull optionally invokes a local 'claude' CLI when --ai is used, and webhook_receiver can be bound to 0.0.0.0 if the user passes that flag (SKILL.md warns about this).
Install Mechanism
No install spec is provided (instruction-only); scripts run with the system Python and use the requests library. Nothing is downloaded from third-party URLs or written to system-wide locations by an installer.
Credentials
The skill does not request environment variables or cloud credentials; it expects a local API key file (~/.config/readai/api-key). The code reads READAI_TIMEZONE if present (optional). Requiring an API key (stored in a user file) is proportional to the stated purpose. Note the client also checks a fallback path (~/.config/limitless/api-key) which is reasonable for supporting 'Limitless' but is an additional location to be aware of.
Persistence & Privilege
always is false and the skill does not request permanent platform-level privileges. It writes meeting and log files only under the user's home (~/.readai, ~/.config/readai) and does not modify other skills or global agent configs. The webhook can be exposed to the network if the operator intentionally binds to 0.0.0.0.
Assessment
This skill appears to do what it says: it queries Read AI / Limitless APIs and saves meeting data under your home directory. Before installing, consider: 1) the API key is stored in a plain file (~/.config/readai/api-key) — protect that file (SKILL.md suggests chmod 600). 2) The Limitless pull optionally calls a local 'claude' CLI when you use the --ai flag — only enable that if you trust the 'claude' binary on your system. 3) The webhook receiver defaults to localhost but can be bound to all interfaces; only bind publicly if you know what you’re doing and secure the endpoint (use a firewall, reverse proxy with TLS, or tunnel). If those caveats are acceptable, the skill is internally consistent with its purpose.

Like a lobster shell, security has layers — review code before you run it.

latestvk974kwjfsrb8kyf9rxa3vzz7kd83wa4p

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments