Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
ddday
v1.0.0Daily work journal + machine migration toolkit. Auto-scans all registered projects (git activity, file changes, API status), generates a daily dashboard, and...
⭐ 0· 33·0 current·0 all-time
byCosmos Fang@cosmofang
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill claims to scan registered projects and produce migration bundles; the required tools and actions (reading project files, running git, find, writing logs) align with that purpose. It does not request unrelated credentials or binaries.
Instruction Scope
The runtime instructions direct the agent to read arbitrary files under each registered project, run git commands, and produce a bundled 'snapshot' that includes 'all data' and 'AI memory'. The instructions do not enumerate safe exclusions (e.g., .env, secret files) and are vague about what 'AI memory' includes. That vagueness could lead to accidental collection of sensitive files or agent memory outside the intended scope.
Install Mechanism
This is an instruction-only skill with no install spec and no code files — low install risk. It instructs the user to create a local symlink into $HOME/.claude/skills, which is a benign, local setup step for an agent skill.
Credentials
The skill requests no credentials or config paths, which is proportional. However, because it reads arbitrary project directories and packs 'all data', it can still collect secrets that happen to be in those directories; the skill does not require or declare access to any external credentials but can exfiltrate local secrets if misused.
Persistence & Privilege
The skill is not always-enabled and does not request elevated platform privileges. It does instruct creating a symlink within the user's skills directory (normal). No instructions were found that modify other skills or system-wide configurations beyond the skill's own path.
What to consider before installing
This skill appears to do what it says (scanning projects and building migration bundles) but has important privacy risks by default. Before installing or running it: 1) Only register explicit project paths — never add home (~/) or root, or entire disks. 2) Review workspace.json after adding projects to ensure paths are correct. 3) Expect the export/snapshot to include everything in each registered project directory; explicitly exclude directories or file patterns that contain secrets (e.g., .env, credentials, private keys, build artifacts). 4) Inspect any generated bundle before transferring it off-device. 5) Don't enable the optional cron until you have a reviewed generate_dashboard.py script in place and are confident about what gets collected. 6) If you need assurance the skill won't collect agent memory or other sensitive config, ask the author (or review the missing Mode 4 export details) — the truncated instructions make it unclear whether 'AI memory' or other agent files are collected. Additional information that would change this assessment: the full Mode 4 export procedure, explicit exclusion rules for secrets, and confirmation that no network upload of bundles occurs.Like a lobster shell, security has layers — review code before you run it.
latestvk97b4fyr91g1zx7ecba1b5ka5n83yraw
License
MIT-0
Free to use, modify, and redistribute. No attribution required.