Projects
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: projects Version: 1.0.0 The skill bundle defines a personal project management system. The `SKILL.md` provides instructions for the AI agent to create and manage project-related files and folders within a dedicated `~/projects/` directory. All described actions, such as creating folders, READMEs, and task lists, are confined to this workspace and are consistent with the stated purpose. There is no evidence of prompt injection attempts to deviate the agent from its purpose, access sensitive data outside the project scope, perform unauthorized network calls, or execute malicious commands. The `_meta.json` file contains standard skill metadata.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may make local file-system changes in the project workspace, including creating, moving, or deleting project materials if the user directs that workflow.
The skill asks the agent to create and manage local project folders and files, including possible archiving or deletion during reviews.
Create `~/projects/` as workspace ... Create folder with README containing answers ... Review someday quarterly — activate, archive, or delete
Keep the workspace scoped to `~/projects/` and confirm before archiving or deleting project folders or files.
Project folders could contain sensitive contact, billing, decision, or work information that may be exposed if the folder is shared, synced, or backed up insecurely.
The skill may store persistent project and client/business information in local files.
Client/Work Projects - Add: deadline, contact info, rate if applicable - Track time if billing: simple log in project folder
Avoid storing secrets in these files, and use appropriate local permissions or encrypted storage if project/client details are sensitive.