Wishlist
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: wishlist Version: 1.0.0 The skill bundle describes a personal wishlist system. Its instructions in SKILL.md detail core behaviors like creating a `~/wishlist/` directory, managing markdown files for items, and periodically checking prices on configured e-commerce stores. While these actions involve file system and network access, they are directly and reasonably aligned with the stated purpose of tracking prices and managing a wishlist. There is no evidence of intentional harmful behavior, data exfiltration, malicious execution, persistence mechanisms, or prompt injection attempts designed to subvert the agent for malicious ends. Any potential for vulnerability would stem from the agent's underlying implementation of these instructions, not from the instructions themselves.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Using the skill may result in external price searches and edits to wishlist files, but the artifacts do not show automatic purchasing or unrelated actions.
The skill instructs the agent to search external stores and update local wishlist records. This is central to the price-tracking purpose, but it is still tool-mediated activity users should expect.
When checking prices: - Search current prices across configured stores - Compare to target and history - Surface significant drops - Update last checked date
Review configured stores and links, and keep purchase decisions user-confirmed rather than automatic.
The local workspace may reveal personal shopping interests, budgets, and purchase history to anyone or any agent process with access to those files.
The skill stores persistent local records for wishlist items, priorities, price targets, alerts, and purchases so they can influence future recommendations.
Create `~/wishlist/` as workspace
Keep the wishlist folder private, avoid storing payment details or highly sensitive notes, and periodically review or delete outdated entries.