Skillv3.0.1

ClawScan security

Subagent Distiller · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 6, 2026, 12:21 PM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions match its stated purpose (incremental extraction, filtering, clustering and lifecycle management of knowledge cards); there are no requests for credentials or network installs, but it reads local session logs and writes/archives local memory files so you should review paths and backup data before running.
Guidance: This skill appears internally coherent and implements what it claims, but take these precautions before installing/running: - Backup your memory/topics and related workspace directories (the scripts will move/archive topic files and create/overwrite cards). - Update the hard-coded paths (/home/aqukin/...) in the scripts to match your environment to avoid accidental edits in the wrong home directory. - Confirm which agent/model/process will execute the extraction tasks (extraction_tasks.json / sessions_spawn). The system will send raw conversation slices to that processor, so ensure the model/endpoint is authorized and acceptable for processing sensitive data. - Clarify the repository URL inconsistency in SKILL.md vs package.json and prefer obtaining the code from a trusted source (verify upstream repo/commit history). - Run in a test environment first (or run incremental_slice and realtime_distill in dry-run / inspect-mode) to observe outputs before adding cron jobs or using bulk_cleanup --exec. - Note: bulk_cleanup prints what would be deleted and requires --exec to perform moves, but review the printed list carefully before executing. If you want, I can list the exact files/lines that reference hard-coded paths and suggest safe edits to make the skill use a configurable workspace path.

Review Dimensions

Purpose & Capability: okName/description (incremental distillation of conversation memory) aligns with the included scripts: incremental_slice.py reads session jsonl and produces slices, realtime_distill.py prepares extraction tasks and finalizes cards, domain_consolidate.py merges domains, lifecycle_manager.py manages reminders, and bulk_cleanup.py re-evaluates/archives cards. No unrelated credentials, binaries, or services are requested.
Instruction Scope: noteSKILL.md and scripts instruct the agent/operator to read conversation session files, create slices, generate extraction tasks, and rely on a 'main agent / sessions_spawn' subagent to run the prompts — meaning raw conversation content will be sent to whatever model/process handles those tasks. bulk_cleanup.py can archive (move) many topic files (requires explicit --exec to perform deletes), and crontab instructions schedule automatic runs. Also note a minor inconsistency in SKILL.md's example git clone URL (github.com/yourname/...) vs package.json repository (github.com/openclaw/...), which should be clarified before installing.
Install Mechanism: okNo install spec or remote downloads; this is instruction-and-script based. No brew/npm/remote archive downloads are performed by the repo itself. Scripts operate on local files only.
Credentials: noteThe skill requests no environment variables or credentials (proportional). However all scripts use hard-coded absolute paths under /home/aqukin/.openclaw/workspace and related dirs — you must adjust those to your environment. The scripts read session logs (sensitive conversational data) and write state, chunks, tasks, and topic files to disk; no external network endpoints are contacted by the scripts themselves.
Persistence & Privilege: okSkill does not request always:true and does not modify other skills. It writes its own state and outputs to the workspace and memory directories (normal for this functionality). Cron instructions are suggested but are user-controlled (manual crontab edits).