Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Reminder
v0.1.2Capture natural-language events in Chinese or English, save them to your workspace, and schedule Telegram reminders with default 24h, 1h, and 10m notifications.
⭐ 0· 125·0 current·0 all-time
by@fresh3
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The described functionality (parse natural-language events, store them in the workspace, and schedule reminders) aligns with the files present (events template) and being instruction-only. However, _meta.json owner/version differ from the registry metadata included in the submission, which is an inconsistency that could indicate repackaging or stale metadata.
Instruction Scope
SKILL.md instructs the agent to write/read ~/.openclaw/workspace/reminders/events.yml and to 'create cron jobs' that deliver to the user's current Telegram. It does not show the exact cron commands or payloads, and it gives the agent wide discretion to schedule jobs. The instructions also reference asking clarifying questions and modifying events.yml; those behaviours are expected, but the vagueness around how cron jobs are created/delivered is concerning because cron jobs could run arbitrary commands if not constrained.
Install Mechanism
There is no install spec and no code files — it is instruction-only. That minimizes disk-write risk; nothing is downloaded or installed by the skill itself.
Credentials
SKILL.md references REMINDER_TZ and REMINDER_OFFSETS_MINUTES, but the skill declares no required env vars or credentials. It also claims to deliver reminders to the 'current Telegram' without declaring any Telegram API key/token or stating how Telegram auth is provided. This mismatch (undeclared env vars/credentials) is an incoherence that should be clarified before use.
Persistence & Privilege
The skill is not always-enabled and does not request system-wide configuration. It writes to a workspace file under ~/.openclaw and schedules platform cron jobs; those are reasonable for a reminder skill provided the cron actions are constrained. It does not attempt to modify other skills' configs.
What to consider before installing
Before installing, ask the skill author or maintainer to clarify: (1) how Telegram delivery is authenticated—where the Telegram token comes from and whether the skill will ever ask for/store it (the SKILL.md mentions sending to 'current Telegram' but no credentials are declared); (2) what exact cron jobs/commands will be scheduled (inspect the cron payload to ensure it won't run arbitrary shell commands); (3) whether REMINDER_TZ and REMINDER_OFFSETS_MINUTES should be set as env vars (they're referenced but not declared); and (4) why registry metadata (owner/version) differs from the included _meta.json. If you cannot get these clarifications, test the skill in a restricted/sandbox environment and review any scheduled cron jobs and the events.yml contents before allowing it to run in a real account. Avoid storing secrets in the workspace and confirm LOCAL_CONFIG.md is properly gitignored as suggested.Like a lobster shell, security has layers — review code before you run it.
latestvk976pdpf4gknph2grctsnfbhyh835j41
License
MIT-0
Free to use, modify, and redistribute. No attribution required.