v1.0.0

閱讀助手

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 8:04 AM.

Analysis

This is a coherent EPUB reading assistant, but users should notice that it installs Python packages, stores book text and summaries locally, and can optionally sync or run reminders.

GuidanceThis skill appears safe for its stated purpose if you are comfortable storing EPUB contents and summaries in the OpenClaw workspace. Review the pip install step, use trusted EPUB files, and enable Notion sync or cron reminders only if you want cloud storage or automatic daily summaries.

Findings (5)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

SKILL.md

pip3 install ebooklib beautifulsoup4 lxml

The skill directs installation of third-party Python packages without pinned versions or an install spec. This is purpose-aligned for EPUB parsing, but it changes the local Python environment.

User impactInstalling the skill's dependencies may add or update packages on the user's machine.

RecommendationInstall dependencies in a virtual environment if possible and review/package-pin them if reproducibility matters.

Agent Goal Hijack

SeverityLowConfidenceHighStatusNote

SKILL.md

將章節文字交給 LLM（即你自己），以下方結構產生摘要

The workflow passes arbitrary EPUB chapter text into the model for summarization. That is central to the skill, but imported book text should be treated as content to summarize, not instructions to obey.

User impactA malicious or unusual EPUB could contain text that attempts to influence the agent while it is generating a summary.

RecommendationUse trusted EPUB files and ensure the agent treats book content strictly as source material for summarization.

Rogue Agents

SeverityLowConfidenceHighStatusNote

SKILL.md

"schedule": "0 8 * * *", "prompt": "查看我的閱讀進度，如果有正在讀的書，幫我摘要下一章。"

The documentation shows an optional cron job that would repeatedly trigger the skill to summarize the next chapter and push it to a communication platform. It is disclosed and user-configured, but it is persistent autonomous behavior.

User impactIf the cron job is added, the assistant may continue producing and sending reading summaries every day.

RecommendationOnly add the cron job if you want recurring reminders, and know how to disable or remove it from `~/.openclaw/cron/jobs.json`.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityLowConfidenceHighStatusNote

SKILL.md

如果使用者有連接 Notion，可同步書籍資訊與摘要到 Notion 資料庫

The skill can use a connected Notion account to create or update a reading database. This is optional and disclosed, but it relies on external account authority not listed as a primary credential.

User impactIf enabled, book metadata and summaries may be written to the user's Notion workspace.

RecommendationEnable Notion sync only intentionally, use the least-privileged Notion integration available, and confirm what database will receive the data.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceHighStatusNote

SKILL.md

書庫根目錄：`~/.openclaw/workspace/reading-library/` ... 閱讀進度檔：`~/.openclaw/workspace/reading-library/progress.json`

The skill persistently stores imported book chapters, reading progress, and generated summaries. This is disclosed and purpose-aligned, but it creates reusable local reading data.

User impactPrivate book content and reading history may remain stored in the OpenClaw workspace until deleted.

RecommendationOnly import books you are comfortable storing locally, and delete the reading-library folder or specific book folders when no longer needed.