Justanote

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward notes skill that reads and writes markdown files in a clearly disclosed persistent notes folder.

Install this only if you want the agent to maintain persistent markdown notes under the OpenClaw notes folder. Avoid storing passwords or highly sensitive secrets there, and confirm the target filename and content before create or append operations when the request could be ambiguous.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The invocation text is broad enough to match ordinary conversational requests such as 'jot this down' or 'add this to my note,' which can cause the skill to activate in situations where the user may not fully realize a persistent file write will occur. In a system with automatic skill routing, that ambiguity increases the chance of unintended note creation or modification from casual dialogue.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly writes to a persistent host-backed directory, but it does not require a user-facing warning that data will be stored on disk and survive container restarts. That creates a risk of users unintentionally persisting sensitive information or modifying files without understanding the durability of the action.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal