Back to skill
Skillv2.0.1
ClawScan security
Bookmark Keeper · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 18, 2026, 10:36 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it stores data locally in plaintext log files and requires no credentials or network access; the only minor gap is that a runnable install mechanism is not provided even though a CLI script is included.
- Guidance
- This skill appears to do what it says: a local, offline bookmark and notes logger implemented as a Bash script that writes plain-text logs to ~/.local/share/bookmark-keeper. Before installing or running: (1) review scripts/script.sh yourself (it is included and straightforward); (2) be aware all bookmarks/notes and exports are stored in plaintext under ~/.local/share/bookmark-keeper (don’t store secrets or private credentials there); (3) the package does not include an install step — if you want the command 'bookmark-keeper' available on PATH you must install or symlink the script yourself or ask the author for an install spec; (4) set appropriate filesystem permissions if others share your account; (5) if you need encryption or syncing, plan an alternative as this tool is local-only. Overall the skill is coherent and low-risk if used as intended.
Review Dimensions
- Purpose & Capability
- okName/description (bookmark management, tagging, searching) match the provided files: a Bash CLI script implements add/search/tag/export/status and stores entries under ~/.local/share/bookmark-keeper. No unrelated credentials, binaries, or cloud integrations are requested.
- Instruction Scope
- okSKILL.md and the script limit actions to local file I/O and standard UNIX utilities (date, grep, wc, du, head, tail, cat). There are no instructions to read unrelated system files, send data to external endpoints, or access secrets.
- Install Mechanism
- noteThere is no install spec (instruction-only skill) but the repo includes scripts/script.sh implementing the CLI. That is a mild coherence issue: the skill provides an executable script but does not declare how it will be installed or exposed on PATH. This is not malicious but the user should be aware the script won't be auto-installed unless the platform or user does so.
- Credentials
- okThe skill requests no environment variables or credentials. It only uses HOME and standard shell utilities, which is proportional to a local bookmark manager. No secrets or unrelated env access are requested.
- Persistence & Privilege
- okThe skill does not request elevated privileges or permanent 'always' inclusion. It writes data under the user's home directory (~/.local/share/bookmark-keeper), which is appropriate for a personal CLI tool.