XMind Generator

Name/description (generate .xmind from Markdown/plain text) match the provided script and package.json dependency on the 'xmind' npm package. Requiring Node and an npm install of the xmind package is proportionate to the stated purpose.

SKILL.md instructs running the script from the skill directory and defaults output to a file path; the script accepts --input, --text, or stdin and writes the output file to any path the caller provides. This is expected for a file generator, but be aware it will read arbitrary input files you point it at and will write to arbitrary filesystem paths (respecting the process user permissions). There is a small documentation inconsistency: SKILL.md says 'Default output location: the OpenClaw workspace directory' while also instructing 'Always run from the skill directory' — the script uses the current working directory, so the actual default depends on where you run it.

No automated install spec in registry; SKILL.md requires running 'npm install' which will fetch 'xmind' and its transitive dependencies from the public npm registry per package-lock.json. This is a normal but moderate-risk install vector (npm packages are third-party code). There are no downloads from arbitrary URLs or extract operations beyond standard npm installs.

The skill declares no required environment variables, credentials, or config paths, and the code does not access env vars. The script only reads input files/stdin and writes an output .xmind file; requested access is proportional to the functionality.

always is false and the skill does not request persistent elevated privileges or modify other skills or system-wide agent settings. It only writes files that the running user permits.