v1.0.0

Hourly Knowledge

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 8:28 AM.

Analysis

The skill matches its stated purpose of sending hourly knowledge snippets, with the main things to notice being scheduled messages, small persistent topic history, and account/chat routing metadata.

GuidanceThis appears safe for its stated purpose if you want hourly knowledge notifications. Before installing, confirm that automatic pushes are desired, the bot accountId is correct, and shared recent-topic history across users is acceptable.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Rogue Agents

SeverityLowConfidenceHighStatusNote

SKILL.md

每小时整点触发时，为用户推送一条有趣的小知识...通过 cron announce 机制自动推送

The skill is explicitly designed for recurring autonomous push behavior; this is disclosed and central to its purpose, but users should expect scheduled messages.

User impactThe user may receive automatic hourly knowledge messages when the scheduler invokes the skill.

RecommendationInstall only if hourly automatic notifications are desired, and ensure the scheduler/announce mechanism is configured as intended.

Agentic Supply Chain Vulnerabilities

SeverityInfoConfidenceHighStatusNote

metadata

Source: unknown
Homepage: none

The registry metadata provides limited provenance. There is no remote install step or external dependency shown, so this is a provenance note rather than a behavior concern.

User impactUsers have less publisher/source context for deciding whether to trust the skill.

RecommendationPrefer installing from trusted publishers or after reviewing the included files, which are small and purpose-aligned here.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityInfoConfidenceHighStatusNote

SKILL.md

通过 inbound meta 自动获取当前用户的 chat_id 和 channel...从 `config.json` 读取 accountId

The skill uses chat routing identifiers and an accountId to deliver pushes. This is expected for the feature and no token or credential leakage is shown.

User impactThe skill relies on account and chat metadata to route the notification to the right place.

RecommendationVerify that the configured accountId is the intended bot/account and that chat routing metadata use is acceptable.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceHighStatusNote

scripts/track_topics.py

HISTORY_FILE = Path("/root/.openclaw/workspace/memory/hourly-knowledge-history.json")
MAX_HISTORY = 10

The helper persists recent topics in a fixed workspace memory file. The retention is bounded to 10 topics, but the file path is global and not clearly separated per user.

User impactRecent topic choices may be reused across runs and potentially across users, affecting de-duplication behavior.

RecommendationIf per-user isolation matters, store history under a user-specific key or path; otherwise the bounded shared topic list is low risk.