Focus
PassAudited by ClawScan on May 1, 2026.
Overview
Focus appears to be a local-only productivity logger; users should mainly notice that it stores entries persistently on disk and that its installation mechanism is not clearly specified.
This skill looks proportionate for a local productivity logger. Before installing, confirm how the `focus` command is installed or invoked, and remember that entries are stored persistently under `~/.local/share/focus/` and can be exported or surfaced later.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill does not show malicious install behavior, but users may need to verify how the included script becomes available as the `focus` command.
The artifacts include executable shell code and documentation for a `focus` command, but the registry does not declare how that command is installed or wired up.
No install spec — this is an instruction-only skill. Code file presence: scripts/script.sh
Confirm the installation path or wrapper before relying on the CLI, and prefer a clearly documented, auditable install method.
Anything logged into Focus may remain on disk and later appear in search, recent activity, stats, or exports.
The tool stores user-provided entries and activity history persistently in local log files, which is central to its purpose but can retain sensitive or misleading content.
DATA_DIR="${HOME}/.local/share/focus" ... echo "$ts|$input" >> "$DATA_DIR/add.log" ... _log "add" "$input"Avoid logging secrets or highly sensitive information, and treat retrieved entries as user-authored notes rather than trusted instructions.