Focus Master
Security checks across malware telemetry and agentic risk
Overview
Focus Master appears to be a local, user-invoked productivity timer, but the reviewed package is missing the CLI executable it tells users to install and it stores task/time history locally.
Before installing, verify that the time-management executable is actually included and from the expected source, check what focus mode blocks, and remember that task names and time history will be stored locally.
VirusTotal
65/65 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The documented command may fail or may depend on a runnable file that was not part of the reviewed artifacts.
The install step exposes a time-management executable on PATH, but the supplied file manifest contains only SKILL.md, SKILL_EN.md, and package.json; package.json also references the same missing executable. Users should verify the runnable component before installing.
ln -s ~/.openclaw/workspace/skills/focus-master/time-management ~/.local/bin/time-management
Install only after confirming the expected time-management executable is present and comes from the intended package or repository.
Focus mode could interfere with parts of the local environment during a work session, depending on how it is implemented.
Blocking distractions is purpose-aligned for a productivity timer, but the documentation does not specify which apps, sites, notifications, or settings are affected.
🔒 **Focus Mode**: Block distractions and maintain concentration
Review or test the focus-mode behavior before relying on it, especially if you need certain notifications, websites, or applications to remain available.
Your task history and productivity patterns may remain on disk after use.
The skill persistently stores task names, categories, timing data, and configuration locally. This is disclosed and purpose-aligned, but the data may reveal personal or work routines.
Data is stored in `~/.openclaw/data/time-management/`: - `time_management.db` - SQLite database - `config.json` - User configuration
Avoid putting sensitive client, project, or personal details in task names if you do not want them retained locally, and periodically review or delete the stored database if needed.