Capacities Lookup
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: capacities-lookup Version: 1.0.0 The capacities-lookup skill is a legitimate tool for searching the Capacities note-taking platform via its public API. The code uses standard Python libraries (urllib) to communicate exclusively with api.capacities.io and implements local caching of metadata in a dedicated data directory. While SKILL.md suggests sourcing shell configuration files (e.g., ~/.zshrc) to retrieve API tokens, this is a common pattern for local agent tools and no evidence of malicious exfiltration, obfuscation, or unauthorized execution was found across the scripts (capacities_client.py, capacities_lookup.py).
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing and using the skill lets the agent search the configured Capacities space using your API token.
The skill uses a Capacities bearer token and sends it to the configured API base URL, which is expected for searching a private Capacities workspace.
"apiBaseUrl": os.environ.get("CAPACITIES_API_BASE_URL", "https://api.capacities.io") ... "Authorization": f"Bearer {token}"Use a scoped or easily revocable Capacities token if available, keep CAPACITIES_API_BASE_URL/default config pointed at the official Capacities API, and remove the token when you no longer use the skill.
Some Capacities metadata and lookup-related information may remain on disk in the workspace after use.
The skill writes persistent local cache/state files containing Capacities structures, spaces, and lookup cache data.
DATA_DIR = WORKSPACE_ROOT / "data" / "capacities" STRUCTURES_PATH = DATA_DIR / "structures.json" SPACES_PATH = DATA_DIR / "spaces.json" LOOKUP_CACHE_PATH = DATA_DIR / "lookup-cache.json" STATE_PATH = DATA_DIR / "state.json"
Review or delete data/capacities if you do not want local Capacities metadata retained, especially on shared machines or shared workspaces.
If your ~/.zshrc contains commands with side effects, those commands may run when following this workflow.
The recommended workflow sources the user's shell startup file before running the Python script, apparently to load the API token from the shell environment.
source ~/.zshrc >/dev/null 2>&1 || true python3 skills/capacities-lookup/scripts/capacities_cli.py sync-structures
Prefer exporting CAPACITIES_API_TOKEN directly in the session or inspect your ~/.zshrc before allowing the agent to source it.