Bookmarks
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: bookmarks Version: 1.0.0 The skill bundle describes a bookmark management system that imports saves from various online platforms (X, YouTube, Reddit, Pinterest, etc.) into a local `~/bookmarks/` directory. The `SKILL.md` outlines the core behavior, file structure, and user preferences, all of which are directly aligned with the stated purpose. There are no instructions for the AI agent to perform actions outside of bookmark management, such as data exfiltration, unauthorized command execution, or persistence mechanisms. The phrases like 'silently, no questions' refer to user interaction, not an instruction for the agent to hide its actions or logs. The skill appears to be a legitimate utility without any malicious intent or significant vulnerabilities.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could collect private saved items from several accounts once connected, and the user may not get a clear chance to approve each source or import run.
The skill implies delegated access to multiple external accounts, but the artifacts do not define permission scopes, authentication boundaries, or source-by-source consent beyond a broad connection step.
Connect sources (X, YouTube, Reddit, Pinterest, etc.) ... Import saves — silently, no questions
Require explicit read-only authorization per platform, show the exact sources and scopes before import, and provide an easy way to disconnect or revoke access.
A local folder may accumulate a searchable record of private interests, saved posts, and generated inferences.
The skill stores imported saves, tags, preferences, and generated summaries as persistent local files for later search and resurfacing.
Create `~/bookmarks/` as workspace ... `saves.md` # All saves, tagged ... `reports/` # Generated summaries
Review the `~/bookmarks/` contents regularly, avoid importing sensitive sources unless needed, and define retention or deletion preferences.
The skill could continue collecting and organizing account data in the background with limited user visibility.
The instructions encourage ongoing autonomous background activity, but do not define a bounded schedule, stopping condition, audit trail, or required user confirmation for continued syncing.
Works silently in background ... Never interrupts unless configured to ... Import saves silently from connected platforms
Make background syncing opt-in, display status and recent activity, set a clear schedule, and provide a simple pause/disable command.