Agent Sleep
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill mostly looks like a memory-maintenance tool, but it has unclear scheduled cleanup behavior and an undeclared helper that can read or write a local notes store.
Review this skill carefully before installing. The visible code does not show network exfiltration or malware, but you should not enable scheduled sleep cycles until cleanup paths are clearly limited and reversible. Also remove or inspect scripts/note.py if you do not want the agent to access /Users/guohongbin/mcp-note-taker/notes.txt.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If enabled as described, the agent could remove log or temporary files the user did not intend to delete.
The agent-facing behavior includes file deletion by broad glob patterns, but the artifacts do not clearly restrict the deletion to a safe directory, require confirmation, or describe recovery.
5. DELETES temp files (`*.tmp`, `*.log`).
Require explicit user opt-in for cleanup, restrict deletion to a documented skill-owned directory, show a dry-run list before deleting, and document restore/backup behavior.
A scheduled sleep cycle may keep running periodically and modify memory or cleanup files even when the user is not actively supervising it.
The skill explicitly recommends scheduled cron execution. This is purpose-aligned for a sleep/maintenance tool, but it creates persistent automation that users should knowingly enable and be able to disable.
schedule 设置生物钟(cron jobs) ```bash python3 scripts/schedule.py --set "0 3 * * *"
Only enable scheduling after reviewing the exact command, document how to disable the cron/heartbeat entry, and keep scheduled actions limited to safe, user-approved paths.
If invoked, the skill could read private notes into the agent context or write new persistent notes outside the expected workspace.
An included helper accesses a hard-coded external note-taker storage path that is not described in SKILL.md, and the script can append notes or print the last notes.
NOTE_TAKER_DIR = Path("/Users/guohongbin/mcp-note-taker")
NOTES_FILE = NOTE_TAKER_DIR / "notes.txt"Remove the helper if it is not part of the skill, or clearly document it, make the notes path user-configurable, and require user approval before reading or writing persistent notes.
The installed skill may fail, or a user/agent may seek or create missing automation code that was not reviewed with this package.
The documentation references helper scripts that are not present in the provided file manifest, while README.md also references a src/ path that does not match the included scripts/ path.
python3 scripts/sleep_status.py ... python3 scripts/schedule.py --set "0 3 * * *"
Ship the referenced scripts or remove the instructions, keep paths consistent, and review any additional helper code before scheduling or running it.