Text Based - Todo List Agent Manager
PassAudited by ClawScan on May 1, 2026.
Overview
The skill appears to be a local todo-list manager with purpose-aligned local persistence and no evidence of network access, credentials, shell execution, or destructive behavior.
This looks safe for normal local task tracking. Before installing, be aware that your todos are saved locally in the skill folder, and check the bundled import_tasks.txt file if you do not want the included example/personal-looking tasks.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Your task text, contexts, priorities, and due dates may remain in the skill’s local state file.
The skill intentionally stores todo content across sessions, which is expected for a task manager but may retain sensitive personal or work details.
Tasks are persisted locally using defined rules (V3.2).
Avoid storing highly sensitive secrets in tasks, and periodically review or clear task_state.json if you no longer need the stored todos.
If these bundled tasks are imported or shown, they could clutter your todo list or be mistaken for your own tasks.
The package includes a file of prewritten, personal-looking task commands. There is no provided evidence that it is automatically imported, but users should be aware of bundled task data.
a P1 @billing Pay myserver 30 dollar +++++ DUE=2026-02-17
Inspect import_tasks.txt before using any import workflow, and delete or ignore bundled tasks that are not yours.