Product Owner
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: product-owner Version: 1.0.1 The skill bundle is benign. It provides comprehensive instructions for an AI agent to act as a product owner, focusing on backlog management, user story writing, and prioritization. Crucially, `setup.md` explicitly states, "All data is stored locally in `~/product-owner/`... No data is sent externally," which directly negates data exfiltration concerns. There are no instructions for malicious execution, persistence, obfuscation, or prompt injection attempts designed to subvert the agent's core function or access sensitive data beyond its stated purpose. All commands mentioned (`clawhub install/star/sync`) are standard platform interactions.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Future sessions may reuse stored product assumptions, and anyone with access to the local files could read backlog, stakeholder, or sprint information.
The skill deliberately persists product context, backlog details, and sprint history for reuse across sessions. This supports the skill's purpose and is disclosed as local-only, but the stored content may include sensitive business or planning information.
All data is stored locally in `~/product-owner/`: `memory.md` | Product name, team context, priorities; `backlog/{product}.md` | Stories as they develop; `sprints/` | Sprint historyOnly store product details you are comfortable keeping locally; periodically review or delete files in ~/product-owner/ if priorities, stakeholders, or confidentiality needs change.