Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Joplin Notes
v1.0.0Interface for managing Joplin notes via WebDAV. Allows listing notebooks and notes, reading content (first line = title), and creating or updating notes and...
⭐ 0· 62·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
Name, description, and the included scripts (list/get/upsert/create) are coherent with a Joplin-over-WebDAV integration. However, the registry metadata claims no required environment variables while the scripts and SKILL.md clearly require JOPLIN_WEBDAV_PATH, JOPLIN_ACCOUNT, and JOPLIN_PASSWORD — this mismatch is surprising and should be fixed.
Instruction Scope
SKILL.md and the scripts instruct the agent to run the included Python scripts (via exec examples) and to create temporary files for uploads; all runtime actions are limited to contacting the configured WebDAV endpoint and reading/writing .md files. The SKILL.md hardcodes an absolute path to the skill workspace in its exec examples, which is brittle but not directly malicious. The scripts do not read unrelated system files or other secrets.
Install Mechanism
There is no external installer or download; all code is bundled with the skill. That avoids third‑party fetches, which is good. The scripts use subprocess to call curl and other local Python scripts (no shell construction vulnerabilities in current usage).
Credentials
The scripts require three sensitive environment variables (JOPLIN_PASSWORD, JOPLIN_ACCOUNT, JOPLIN_WEBDAV_PATH) to function. Those are appropriate for a WebDAV-backed Joplin skill, but the registry metadata incorrectly lists no required env vars and no primary credential — this omission prevents users/administrators from understanding the credential needs up front and increases risk of accidental exposure. Requesting a WebDAV password is expected for the feature, but it should be declared transparently.
Persistence & Privilege
The skill is not always-enabled, does not request elevated system privileges, and does not alter other skills' configs. It writes temporary files under /tmp and performs uploads only to the configured WebDAV URL.
What to consider before installing
This skill appears to do what it claims (manage Joplin .md files over WebDAV), but the package metadata fails to declare the sensitive environment variables the scripts actually require (JOPLIN_WEBDAV_PATH, JOPLIN_ACCOUNT, JOPLIN_PASSWORD). Before installing: (1) only provide WebDAV credentials if you trust the skill source and host the WebDAV server you intend to use; (2) review the included scripts yourself (they are bundled) to confirm there are no hidden endpoints or behaviors; (3) update or ask the publisher to correct the registry metadata so required env vars are visible to users; (4) consider running the skill in an isolated environment or container, and avoid giving it credentials with broader reuse than necessary; (5) note the SKILL.md uses a hardcoded workspace path in its exec examples—ensure the runtime path matches your agent's installation or adjust the commands accordingly.Like a lobster shell, security has layers — review code before you run it.
latestvk976prgjb4tjja3ybh4f291ken83a2k0
License
MIT-0
Free to use, modify, and redistribute. No attribution required.