Tire
PassAudited by ClawScan on May 1, 2026.
Overview
Tire appears to be a local command-line logging assistant with no evidence of network or credential use, but it persists your entries locally and has an under-declared setup path.
This appears safe to use as a local logger, but verify how the `tire` command is installed and remember that entries are saved under `~/.local/share/tire`. Do not type secrets or sensitive personal data into it unless you are comfortable with that data being stored locally.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user or agent may be unsure where the `tire` command comes from.
The skill is documented as a command-line tool, but the registry does not declare how the `tire` command is provided or installed, so users should confirm they are invoking the intended packaged script rather than an unrelated local command.
Required binaries: none ... Install specifications: No install spec — this is an instruction-only skill.
Verify the installation path/source before running `tire`, and prefer a package update that declares the required binary or installation mechanism.
Anything typed into the tool may be saved locally and visible in future history, search, or export output.
The script persistently stores user-provided command input in local log files. This is disclosed and purpose-aligned, but entries can remain on disk and be searched or exported later.
DATA_DIR="${HOME}/.local/share/tire" ... echo "$ts|$input" >> "$DATA_DIR/run.log"Avoid entering passwords, tokens, or private information, and clear `~/.local/share/tire` if you do not want old entries retained.