ClawHub
Back to skill
v1.0.0

Og Board Manager

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:56 AM.

Analysis

This instruction-only skill is a coherent OpenGoat task-board manager; it can create, assign, and update persistent task records, but that is disclosed and aligned with its purpose.

GuidanceBefore installing, make sure you want your agent to manage OpenGoat tasks, including assigning work and updating persistent task records. Confirm the correct agent ID and reportee scope, and avoid adding secrets or sensitive context to task artifacts or worklogs.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
- Create tasks for yourself.
- Assign tasks to your direct or indirect reportees.
- Read and update task state.
- Add blockers, artifacts, and worklogs.

The skill authorizes task-board mutations and delegation actions. This is expected for a board manager, but users should notice that the agent may change task state and create work for others.

User impactThe agent can create or modify OpenGoat task records and assign work within the org hierarchy.
RecommendationUse it only when you want the agent to manage task-board state, and review assignees, task descriptions, and status changes for important work.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
SKILL.md
Important: replace `amazon-senior-manager` with your agent ID.

OpenGoat tool examples are parameterized with an actor ID, so correct identity selection matters for permission boundaries. The instructions do tell the user to use their own agent ID.

User impactUsing the wrong actor ID could cause task operations to be attempted under the wrong organizational identity if the backend permits it.
RecommendationConfirm the agent ID and org context before creating or updating tasks, and assign only to yourself or valid reportees as the skill instructs.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
SKILL.md
"assignedTo": "<agent-id>"

The task-create workflow sends work items to other agents through the OpenGoat board. This is central to the skill's purpose, but it is still an inter-agent communication path.

User impactTask titles, descriptions, artifacts, and worklogs may be visible to or acted on by other agents assigned through the board.
RecommendationVerify the target agent before assigning work and avoid placing sensitive or unrelated data in task descriptions or artifacts.
Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
SKILL.md
opengoat_task_add_artifact({ "actorId": "amazon-senior-manager", "taskId": "<task-id>", "content": "..." })

The skill can add persistent content to task records. Persistent artifacts and worklogs may later be read as task context.

User impactInformation or instructions placed into task artifacts/worklogs can persist and influence later review or execution.
RecommendationKeep persisted task content minimal, accurate, and free of secrets or untrusted instructions unless they are clearly labeled as data.