ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Task Specialist

v2.1.0

A robust, local SQLite-backed task management system designed to elevate your AI agent's project execution. Excellent for both simple tasks and large multi-s...

2· 514·2 current·2 all-time
byOBODA@oboda0
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (local SQLite task manager) matches required binaries (sqlite3, bash), the included scripts, and the SKILL.md guidance. The files implement a CLI that manipulates a local $PWD/.tasks.db as described — nothing requested is disproportionate to a local task manager.
Instruction Scope
SKILL.md instructs agents to install and use the local CLI and to spawn Subagents (sessions_spawn) that read the workspace DB ($PWD/.tasks.db) and use 'task claim'/'task complete'. That is coherent for a Swarm orchestration use-case, but it means any spawned worker with access to the workspace can read/write all task notes and metadata. The skill explicitly warns not to store API keys in notes and disables auto-execution of verification_cmd, which reduces RCE risk. Still: notes and DB exports can contain arbitrary text (URLs, file paths, error messages) and therefore are a potential leakage vector if other agents or processes are untrusted.
Install Mechanism
There is no network download or external package install: install.sh is bundled and run locally, creates the DB, marks scripts executable, and optionally symlinks into ~/.local/bin. No external URLs, no archive extraction, and no automatic remote code fetches were found.
Credentials
The skill declares no required environment variables or credentials. It optionally honors TASK_DB to override the DB path. It does not require unrelated credentials or access to system config. The feature set (notes, exports) can expose sensitive content if the user places secrets there — the SKILL.md warns against that, and the code avoids sending data externally.
Persistence & Privilege
The skill is not force-included (always: false) and does not request elevated platform privileges. Symlinking into ~/.local/bin is optional and opt-in. The skill does not modify other skills' configurations or system-wide settings beyond optional user-controlled symlinks.
Assessment
This skill appears to be what it claims: a local, SQLite-backed task CLI implemented in bundled Bash scripts. Before installing, consider these practical steps: 1) Run install.sh from a project/workspace directory (it creates $PWD/.tasks.db) so data stays scoped to that project. 2) Do not put secrets (API keys, passwords) into task notes — notes and exports (--json) will include whatever you store and are easy to read by other agents or scripts. 3) If you do not want a persistent CLI on your system, skip the --symlink option when running install.sh. 4) Review any verification_cmd strings stored in tasks before running them manually — the skill prints them but does not auto-execute them. 5) Limit filesystem permissions on .tasks.db (e.g., chmod 600) if the DB will contain sensitive context. 6) If you plan to spawn Subagents, only do so to agents/processes you trust, since they will be able to read/write the same workspace DB and notes. If you want, audit the bundled scripts locally (they are plain Bash) to confirm they meet your security expectations.
install.sh:4
Dynamic code execution detected.
scripts/task-heartbeat.sh:4
Dynamic code execution detected.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.

Like a lobster shell, security has layers — review code before you run it.

breakdownvk97f901cg0tsvk9kkqs6r97ve182nqktclivk97f901cg0tsvk9kkqs6r97ve182nqktlatestvk97f901cg0tsvk9kkqs6r97ve182nqktlocalvk97f901cg0tsvk9kkqs6r97ve182nqktmanagementvk97f901cg0tsvk9kkqs6r97ve182nqktplanningvk97f901cg0tsvk9kkqs6r97ve182nqktproductivityvk97f901cg0tsvk9kkqs6r97ve182nqktprojectvk97f901cg0tsvk9kkqs6r97ve182nqktsqlitevk97f901cg0tsvk9kkqs6r97ve182nqkttaskvk97f901cg0tsvk9kkqs6r97ve182nqktworkflowvk97f901cg0tsvk9kkqs6r97ve182nqkt

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📋 Clawdis
Binssqlite3, bash

Comments