ClawHub

Second Brain Triage

v1.0.1

Intelligent information triage system based on Tiago Forte's PARA method (Projects/Areas/Resources/Archive) for automatic categorization and priority scoring...

0· 95·0 current·0 all-time
byhaidong@harrylabsj
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (PARA triage, urgency scoring, relatedness) match the included code (ContentAnalyzer, ParaClassifier, UrgencyScorer, RelatednessDetector). No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
SKILL.md and CLI instructions only describe local analysis, batch processing, and exporting (JSON/Markdown/CSV). The runtime code reads provided files or CLI args and performs in-memory analysis. Instructions do not direct the agent to read unrelated system state or send data externally.
Install Mechanism
There is no installer spec in the registry (instruction-only), but the package contains source files and package.json. The code uses only Node.js standard libraries (fs/path) and declares no external download/install steps — low install risk.
Credentials
requires.env and primary credential are empty, and the code does not access environment secrets or external service tokens. All environment/credential demands are proportional (none).
Persistence & Privilege
The skill is not force-included (always: false) and does not modify other skills or system-wide agent settings. It runs as a normal, local library/CLI without elevated persistence.
Assessment
This skill appears to be a self-contained Node.js library/CLI for classifying and scoring personal content using PARA and local heuristics. It does not request credentials or contact external servers. Things to consider before installing: (1) origin unknown — review the code yourself or run in a sandbox before granting it access to sensitive files; (2) it reads any file path you pass to the CLI, so avoid pointing it at directories with secrets; (3) there are no external dependencies, but test the package (npm test) to verify behavior in your environment; (4) if you plan to integrate it into an automated agent, remember the agent could run it on arbitrary content you supply — ensure inputs are trusted.

Like a lobster shell, security has layers — review code before you run it.

latestvk97332hh8q3hvf0rwsed6m4ysd83a97y

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments