CPA
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: cpa Version: 1.0.0 The OpenClaw AgentSkills skill bundle for CPA exam preparation is benign. It explicitly declares `"bins":[]` in `_meta.json`, indicating no external binaries are required, which significantly reduces the risk of shell injection or malicious execution. All data storage and management instructions are confined to the `~/cpa/` directory, and there are no directives for network communication, reading sensitive files outside this scope, or establishing persistence. The markdown instructions are purely informational and task-oriented, guiding the agent's internal logic for CPA prep, without any evidence of prompt injection with malicious intent or obfuscation.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
CPA scores, education status, NTS dates, and study history could remain accessible to anyone or any process that can read the local ~/cpa/ directory.
The skill intentionally creates persistent local records containing exam progress, scores, deadlines, and study feedback. This is aligned with the stated tracking purpose, but users should know the data will remain on disk.
User data lives in `~/cpa/` ... profile.md ... practice/ ... nts/ ... passed/ ... feedback.md
Keep the ~/cpa/ folder private, avoid storing unnecessary sensitive documents or identifiers, and delete or archive the folder when no longer needed.
If granted, the agent may see calendar details beyond what is needed to find study availability.
The working-professional workflow implies optional access to a personal or work calendar. This is useful for scheduling study blocks, but calendar contents can be sensitive and no explicit access boundary is defined in the artifact.
- Integration with work calendar ... - Scan calendar for available study blocks
Only allow calendar access when needed, prefer read-only access, and ask the agent to use free/busy availability rather than event details where possible.
A tutor could accidentally mix or expose one candidate's progress, scores, or weaknesses to another person if records are not kept separate.
The tutor workflow contemplates storing and comparing multiple candidates' progress. This is purpose-aligned, but it increases the importance of separating student records and obtaining permission before sharing reports.
- Maintain separate tracking per student - Aggregate insights ... - Generate student progress reports
Use separate folders or clearly labeled files per candidate, confirm sharing permissions, and avoid including personally identifying information in aggregate reports unless necessary.