ClawHub

Notelane

v2.0.0

Organize notes as a personal knowledge base with tagging and full-text search. Use when capturing notes, searching entries, building a knowledge base.

0· 93·0 current·0 all-time
by@bytesagain3
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (local knowledge base, tagging, search) match the included script and SKILL.md. Required binaries/env vars are none and the operations (date, grep, sed, tail, wc, du, cat) are appropriate for the stated functionality.
Instruction Scope
Runtime instructions and the script only create and read files under the user's data directory (~/.local/share/notelane) and use standard Unix tools; there are no instructions to read unrelated system configuration, send data externally, or access credentials.
Install Mechanism
There is no install spec (SKILL.md is instruction-heavy), yet a runnable script (scripts/script.sh) is included. That's not harmful but is an inconsistency: the package doesn't say how the script gets installed into PATH or invoked. A user or integrator will need to decide how/where to place and execute the script.
Credentials
The skill requests no environment variables or credentials. The script uses HOME to build a per-user data directory, which is proportional to a local note tool.
Persistence & Privilege
always is false and the skill writes only to its own user-scoped data directory. It does not modify system-wide configuration or other skills. Autonomous invocation is allowed by platform default but does not increase privilege beyond writing user files.
Assessment
This skill appears to be a simple, local Bash CLI for note-taking that stores all data under ~/.local/share/notelane and does not reach outside your machine. Two things to consider before installing: (1) the bundle includes a script but no install instructions — decide where to place it and inspect the script before running, and (2) it will create and append to files in your home directory (history.log and per-command .log files), so if you have sensitive data don't store it there. If you want extra caution, open the script (scripts/script.sh) and review it yourself, or run it in a disposable account/container first.

Like a lobster shell, security has layers — review code before you run it.

latestvk978yv56tps9cey3fmffaxz46x834j7g

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments