Bookkeeping
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This bookkeeping skill is coherent and disclosed, but it handles sensitive financial files and can change or reset a local bookkeeping database through an external CLI.
Install this only if you trust the external bookkeeping CLI and are comfortable letting the agent process local bill files. Review imports, natural-language record entries, budget changes, dashboard startup, and especially any database reset confirmation.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken or misunderstood request could modify local financial records, and a confirmed reset could delete the local bookkeeping database.
The skill exposes CLI actions that can add financial records, set budgets, and reset the local database. These actions fit the bookkeeping purpose, and reset is separately marked as requiring strong confirmation.
记录支出:`bookkeeping record expense --payload <json> --json` ... 设置预算:`bookkeeping budget set ...` ... 重置数据库:`bookkeeping reset --yes`
Review write and reset requests carefully, keep backups if the database matters, and only confirm reset when you truly intend to delete the data.
Installing the skill requires trusting the external bookkeeping CLI package source.
The executable behavior is provided by an external CLI installed from a Homebrew tap or an unpinned GitHub pipx source. This is disclosed and purpose-aligned, but the skill itself does not include the CLI code.
"formula":"lastarla/tap/bookkeeping-tool" ... "package":"git+https://github.com/lastarla/bookkeeping-tool.git"
Install the CLI only from a trusted source, review the upstream repository or formula if needed, and prefer pinned or versioned releases where available.
Sensitive transaction and budget information may be stored locally and later surfaced in chat responses or summaries.
Imported bills, recorded transactions, and budgets become persistent local bookkeeping data that can later be queried, summarized, and used for reminders.
你想导入账单附件或本地账单文件 ... 查询交易 ... 查看概览、趋势或分类汇总 ... 记录单笔支出或收入 ... 设置或检查日 / 月 / 年预算
Only import intended financial files, verify imported data, and avoid using shared or untrusted bill files unless you are comfortable storing their contents locally.
If you ask to import a bill and the file is not already local, the agent may download the message attachment for processing.
The skill may call an attachment-download capability to fetch message attachments when no local path is already present. This is expected for bill import, but it relies on the attachment tool and message context boundaries.
当 `message_attachment_download` 可用时,优先调用它,并使用返回的 `download.local_path`
Use this with trusted attachments, and when multiple candidate files exist, follow the skill’s confirmation step before importing.
A local dashboard process may continue running until stopped.
The skill can start a local bookkeeping dashboard service. The artifacts say dashboard startup should require explicit user intent when ambiguous, so this is disclosed rather than hidden persistence.
启动看板:`bookkeeping serve`
Start the dashboard only when needed and stop the local service when you are done.