Freelancer Toolkit
PassAudited by ClawScan on May 10, 2026.
Overview
This appears to be a coherent freelance time-tracking and billing helper, but it stores sensitive client and financial records locally and can pass invoice data to another invoicing tool.
This skill looks reasonable for its stated purpose. Before installing, be comfortable storing client and financial records in `~/.freelancer-toolkit/`, review time entries and invoice drafts before saving or generating them, secure the host machine and backups, and only approve jq installation or InvoiceGen Pro handoff if you trust those components.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone with access to the host files, backups, or agent context may be able to see client and billing information.
The skill keeps persistent local business records that may be reused by the agent for future summaries, invoices, and dashboards.
Freelancer Toolkit stores all data as JSON files in `~/.freelancer-toolkit/` ... Client names, contact info, and billing rates ... Invoice records and payment status
Use disk encryption, keep the directory permissions restricted, back up the files securely, and avoid entering unnecessary sensitive details.
Client names, rates, hours, and invoice details may be processed outside this skill when InvoiceGen Pro is used.
Invoice generation can hand client and billing data to another tool or integration boundary.
When generating invoices via InvoiceGen Pro, client and billing data is passed to that tool's processing pipeline.
Review InvoiceGen Pro's security and privacy behavior, and confirm invoice generation only when you intend to share that billing data.
Running setup may change the local system by installing software, potentially with elevated privileges.
The setup script may install the jq dependency through the system package manager after prompting the user.
read -rp "Attempt to install jq now? (y/N): " install_jq ... sudo apt-get install -y jq
Install jq yourself from a trusted package manager if preferred, and do not approve sudo/package-manager prompts unless you understand them.