Back to skill
Skillv1.0.0
ClawScan security
Reading Manager · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 10, 2026, 3:19 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requirements are consistent with a local personal reading manager; nothing in the bundle requests unrelated credentials or covert network endpoints.
- Guidance
- This package appears to implement a normal local CLI reading manager. Before installing: (1) be aware it will create ~/.config/reading-manager/reading.db (local unencrypted storage of your entries and any API keys you add); (2) network lookups use Google Books (optional) — you can use the tool offline or avoid adding API keys; (3) installation is via pip locally (pip install -e .) — review the included source if you want to confirm no unexpected behavior; (4) if you plan to add API keys, understand they will be stored in the SQLite config table. If you want extra caution, run the package in a sandboxed environment or inspect/execute the code manually before giving it access to your primary account/home directory.
Review Dimensions
- Purpose & Capability
- okName/description match the included code and CLI: the package implements book/article management, progress, notes, lists, goals and reporting. The included Python modules implement the features described in SKILL.md (SQLite DB under ~/.config/reading-manager/reading.db, Google Books/Douban API lookups, CLI commands).
- Instruction Scope
- noteSKILL.md only instructs installing locally (pip install -e .) and running the CLI; runtime behavior is limited to local DB operations and optional Google Books/Douban lookups. One side-effect: reading_cli calls init_database() at import, so merely importing/running the CLI will create the data directory and database file (~/.config/reading-manager/reading.db). API lookups use requests to Google Books; Douban API is a placeholder. No instructions to read unrelated system files or send data to unexpected endpoints.
- Install Mechanism
- noteThere is no registry install spec in the metadata, but SKILL.md and README instruct a local pip editable install (pip install -e .). All source is included in the bundle (no external downloads during install). This is a low-risk install model but requires the user to run pip locally.
- Credentials
- noteThe skill declares no required environment variables or external credentials. It does include configuration keys for API keys (api.google_books_key, api.douban_key) which are stored in the local config table in the SQLite DB if populated. If you provide API keys, they will be stored locally and not encrypted. No other credentials or unrelated env vars are requested.
- Persistence & Privilege
- okThe skill is not forced-always, does not request platform-wide privileges, and does not modify other skills. It stores persistent data locally under the user's home (~/.config/reading-manager/reading.db). The only persistence behavior to note is automatic DB creation when the CLI module is imported.