Skillv1.0.1

ClawScan security

knowledge-internalizer-pro · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignMar 16, 2026, 3:54 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's declared purpose (systematic knowledge internalization and self-evaluation) matches its instructions and included helper code: it searches/fetches web sources, synthesizes structured assets, scores capability, and persists them to the agent workspace; nothing requested is disproportionate.
Guidance: What to consider before installing: - Functionality: This skill will perform web searches/fetches, synthesize graphs/reports, and save them under ~/.openclaw/workspace/memory/knowledge/{topic}/. That behavior matches its description. - Privacy: Avoid asking it to ingest sensitive or confidential documents unless you are comfortable storing them persistently in the agent workspace; persisted data will be used in later responses. - Persistence control: After use, inspect or delete the created files (knowledge_graph.json, knowledge_framework.md, qa_pairs.json, capability_report.md) and the MEMORY.md entry if you want to remove the stored memory. - Network use: The skill relies on the agent's web_search/web_fetch tools to fetch external pages; the included code does not call external endpoints itself. - Safety: The helper script is simple (scoring, slug creation, directory creation, report generation) and contains no obfuscated or network-exfiltration logic. If you require stricter controls, restrict the agent's web-fetch permissions or run the skill only on non-sensitive topics.

Review Dimensions

Purpose & Capability: okName/description, SKILL.md, reference docs, and the helper script are coherent: the skill needs web search/fetch, aggregation, scoring, and local persistence. There are no unrelated environment variables, binaries, or external credentials required.
Instruction Scope: noteRuntime instructions ask the agent to run multi-dimensional web_search/web_fetch, aggregate sources with credibility scores, build knowledge artifacts (graph, framework, Q&A), and call a write tool to persist files to ~/.openclaw/workspace/memory/knowledge/{topic}. These actions are consistent with the stated purpose but will fetch arbitrary web content and persist it; review privacy implications and the agent's web tools before use.
Install Mechanism: okNo install spec (instruction-only) and only one small, non-obfuscated helper script is included. No downloads from external URLs or package installs are requested. Low installation risk.
Credentials: okThe skill requests no environment variables, credentials, or config paths beyond writing into the agent workspace. The required accesses are proportional to a memory/knowledge skill.
Persistence & Privilege: noteThe skill writes persistent files under ~/.openclaw/workspace/memory/knowledge/{topic} and updates a global MEMORY.md index. This is expected for a knowledge-storage skill but means learned content will persist and influence future agent responses — consider whether you want that persistent memory for the topics you ask it to ingest.