OpenClaw Flomo Skill
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill appears purpose-aligned for Flomo, but it uses your local Flomo login token/webhook to read and create memos while the registry metadata does not declare those sensitive permissions.
Review this skill carefully before installing. It is not showing clear malicious behavior, but it relies on your local Flomo login state, can read private memos, and can create new memos. Use it only from a trusted source, keep the API base pointed at Flomo, and require explicit confirmation before any write action.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill can use the logged-in Flomo account to fetch private memos and support webhook-based writing.
The script reads the local Flomo desktop config to obtain the user's access token and sends it as a Bearer token to the Flomo API. The registry metadata lists no primary credential and no required config paths, so this sensitive account access is under-declared.
FLOMO_CONFIG_DEFAULT = Path.home() / "Library/Containers/com.flomoapp.m/Data/Library/Application Support/flomo/config.json" ... token = cfg.get("user", {}).get("access_token") ... "Authorization": f"Bearer {_get_access_token()}"Install only if you trust the skill with your Flomo account. The maintainer should declare the local config/token requirement and clearly bound API destinations and write permissions.
If invoked, the agent can add content to your Flomo account.
The skill includes a documented write operation that can create new Flomo memos through the user's account. This matches the stated purpose, but it is still a mutating action.
Write memo (auto-resolve incoming webhook from local flomo login state): ```bash python3 scripts/flomo_tool.py write --content "内容" ```
Use the write command only after confirming the exact memo content you want created.
Private notes may be exposed in the agent conversation or tool output.
The skill retrieves personal memo content from Flomo and the local Flomo cache into the agent workflow. This is purpose-aligned, but memo contents may be private or may contain text the agent could over-trust.
Use when user asks to fetch recent flomo notes, search memo text in local flomo cache, or create/write a new memo to flomo
Limit reads to the needed tags, keywords, and counts; avoid fetching sensitive memos unless you are comfortable sharing them with the agent session.
Users may not get an accurate pre-install warning about platform dependencies or the skill's source.
The registry metadata provides limited provenance and does not declare runtime requirements, even though the README describes macOS, the Flomo desktop app, and curl as requirements.
Source: unknown; Homepage: none; Required binaries (all must exist): none; OS restriction: none
Prefer installing from a trusted source, and ask the maintainer to add accurate OS, binary, config-path, and credential declarations.