Obsidian笔记CLI
ReviewAudited by ClawScan on May 14, 2026.
Overview
This is a coherent local Obsidian utility with no exfiltration shown, but its bulk replace command can rewrite every Markdown note in a vault without a backup, dry run, or confirmation step.
Review this skill before installation if you may let an agent act on your notes. It appears local-only and purpose-aligned, but back up your Obsidian vault and require explicit approval before using the replace command or any other operation that writes to many notes.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken or overly broad replace request could corrupt or irreversibly change many personal notes at once, especially if invoked by an agent without explicit user review.
The replace command scans every Markdown file under the supplied vault and overwrites matching files in place using a user-supplied regular expression, with no confirmation, dry-run, backup, or rollback.
md_files = get_all_md_files(args.vault) ... pattern = re.compile(old_text, flags=flags) ... with open(file_path, 'w', encoding='utf-8') as f: f.write(new_content)
Back up the vault before using replace, require explicit approval for any write operation, add a dry-run/preview mode, and treat search/replace text as literal unless regex mode is explicitly requested.
Private notes may be read into command output or the agent conversation, depending on which command is run and what results are displayed.
The tool recursively reads all Markdown notes under the user-supplied vault path for search, statistics, export, and link analysis.
for root, dirs, files in os.walk(vault_path): ... if f.endswith('.md'): md_files.append(...) ... return f.read()Use only trusted vault paths, avoid running broad searches on highly sensitive notes unless needed, and review outputs before sharing them outside the local environment.