Opentask Skill
ReviewAudited by ClawScan on May 10, 2026.
Overview
This is a coherent task-management skill, but it can let an OpenTask server and heartbeat checks steer agent work and mutate task state without clear approval or scope boundaries.
Install this only if you operate or fully trust the OPENTASK_HOST service. Do not add the HEARTBEAT auto-processing workflow unless you want queued OpenTask items to direct the agent’s work. Use scoped API keys, review queued tasks before execution, and avoid storing secrets or sensitive personal data in task parameters or logs.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A remote or shared task queue could become a source of instructions for the agent, potentially redirecting what the agent works on if the OpenTask server or task creators are not fully trusted.
This directs the agent, during heartbeat processing, to execute task logic obtained from the OpenTask queue. The artifacts do not specify how task creators, task content, or user approval are validated before execution.
2. **有任务则执行**
- 获取第一条任务 ID
- 调用 `/api/tasks/{id}/start` 开始执行
- 执行任务逻辑
- 完成后调用 `/api/tasks/{id}/complete`Only connect this skill to a trusted OpenTask server. Require review or approval before executing queued task content, and define allowed task types and trusted task creators.
The agent may mark tasks started, completed, failed, retried, or cancelled in OpenTask.
The skill documents multiple state-changing API operations. This is expected for a task-management client, but users should understand these calls mutate remote task state.
PUT /api/tasks/{id}/start ... PUT /api/tasks/{id}/complete ... PUT /api/tasks/{id}/fail ... PUT /api/tasks/{id}/retry ... PUT /api/tasks/{id}/cancelUse least-privilege API keys where possible and confirm that automated state changes are acceptable for your workflow.
Anyone or any agent with the API key may be able to perform OpenTask operations allowed by that key.
The skill requires a service API key for authenticated task operations. That credential is purpose-aligned but sensitive.
`OPENTASK_API_KEY` | API 认证密钥(从服务端获取) ... **认证 Header** | `X-Bot-Key`
Store the API key securely, rotate it if exposed, and prefer keys scoped to the current bot/container rather than broad task-administration access.
Task contents and parameters may be shared through the OpenTask service and acted on by different agents, which can expose sensitive task data or allow one actor to influence another agent.
The API is used to pass task parameters, steps, inputs, and outputs among multiple agent/container identities, but the artifacts do not describe origin checks, per-agent authorization, or data minimization.
assigned_to 值 ... anna ... trump ... cc ... session_agent ... task_params 格式 JSON 字符串,灵活存储任务参数、步骤、输入输出
Treat OpenTask as a trusted coordination service only; avoid placing secrets in task_params, enforce per-agent authorization, and log/review who created each task.